This document provides information on how to add users in Cloud IAM. Users are considered to be those with personal console access to the cloud providers' accounts.
Users and service accounts synchronism won't remove roles and permissions added directly to the Cloud. In this case, the permissions will be synced up, bringing the new ones to Segura. If the permission was inactivated/removed within Segura, it will also be removed from the Cloud Service Provider.
Create a user
To create a user in Cloud IAM, see the following steps:
- On Segura, in the navigation bar, hover over the Products menu and select Cloud IAM.
- In the side menu, select Identity management > Users.
- In the top right corner, click Add.
- In the Settings tab, enter the following information:
- In the User * field, select an user.
AttentionIf you are a member of an access group with a template defined, when inserting the user, he must follow the rule established in the template.
- (Optional): In the User responsible field, select the user responsible for the user.
- (Optional): In the TTL (seconds) field, enter the lifetime of the user. If the value is zero, the service account won't expire.
- (Optional): In the Description field, enter a description.
- (Optional): In the Tags field, enter tags to help identifying the user.
- Navigate to the providers’ tab you want to register.Info
You can register AWS, Azure and Google Cloud user on the same screen at the same time.
- Click Continue until you get to the Review tab.
- In the Review tab, review all information enter previously, and click Save.
The new added user will appear listed on the Users report screen.
Add an AWS user
To add an AWS user in Cloud IAM, see the following steps:
- On Segura, in the navigation bar, hover over the Products menu and select Cloud IAM.
- In the side menu, select Identity management > Users.
- In the top right corner, click Add.
- Go to the AWS tab.
- In the Accounts section, select which accounts this user should be created under.
- In the Policies section, select the policies (permission group) that this user should have on the account. AWS limits up to 10 policies per user.
- Click Continue until you get to the Review tab.
- In the Review tab, review all information enter previously, and click Save.
Add an Azure service account
To add an Azure service account in Cloud IAM, see the following steps:
- On Segura, in the navigation bar, hover over the Products menu and select Cloud IAM.
- In the side menu, select Identity management > Users.
- In the top right corner, click Add.
- Go to the Azure tab.
- In the Creation type section, select what type of user you want to create. The options are: Create user or Invite user.
- In the Roles section, select which roles to add to the user.
- In the Groups section, select in which groups the user will be added on.
- Click Continue until you get to the Review tab.
- In the Review tab, review all information enter previously, and click Save.
Add a Google Cloud service account
To add a Google Cloud service account in Cloud IAM, see the following steps:
- On Segura, in the navigation bar, hover over the Products menu and select Cloud IAM.
- In the side menu, select Identity management > Users.
- In the top right corner, click Add.
- Go to the Google Cloud tab.
- In the Organization roles section, select which roles (permission groups), accounts and organizations the user should be added to.
- In the Project roles section, select which roles (permission groups), accounts and projects the user should be added to.
- Click Continue until you get to the Review tab.
- In the Review tab, review all information enter previously, and click Save.
Do you still have questions? Reach out to the Segura Community.