Cloudoor Members¶
Having access to your cloud ecosystem is a big deal. To always make sure it's secure, take control of Cloudoor's Members feature to centralize and manage access and privileges for all members of your organization.
Members include:
- Add members in a few clicks, just like Trello.
- Limit access to resources with privilege management.
- Get comprehensive visibility of access policies across the organization, projects and clusters.
How Does Cloodoor Members Work?¶
Members is an IAM feature integrated into our platform using Keycloak to delegate authentication and authorization. Before an actor (team member, expert consultant, etc.) from your organization can act on the platform, they must be added by your organization's super-admin.
Through your IAM, you gain in-depth visibility of your access strategy at your organization's level, project's level and cluster's level. The built-in roles are based on current Kubernetes best practices:
This way, you have extensive visibility into your IAM strategy at Organization, Project, or Cluster level.
Cloudoor promotes cross-functional collaboration of your teams by defining the authorization scope for each role while eliminating the need for deep Kubernetes knowledge.
You can assign built-in roles to your users to fit your needs.
| Role Name | Level | Role Description |
|---|---|---|
| Super-Admin | Organization | The super-Admins configure the interface. They can integrate all users via IAM, clusters via the Hub, and define tagging and quota policies for the organization. |
| Project Owner | Organization | The Project Owners become administrators of their projects They can create and administer a project, ask for resources (CPU, Memory, Storage), add team members to the project, link environments across multi-cloud Kubernetes clusters |
| Project Owner+ | Organization | Same as Project Owners except one thing. The Project Owners + are self-provisioned; they do not need validation from the Validator. |
| Validators | Organization | They Validate Resources requests. The Validators receive the resource requests and decide whether or not to accept them. In case of refusal, the owner project must reapply. |
| Project Admins | Project | They are the project Owners Manage environments, Resources, clusters, day-to-day deployments |
| Developers | Project | They deliver applications. Set up environments and Deploy Applications |
| Viewers | Project | They monitor results. They can view and monitor KPI thanks to the dashboard project |
Continue Learning:¶
- A tutorial of Cloudoor Members: Members Tutorial
- Continue to other main concepts: Cloudoor Clusters
- Getting Started: Quick Start