User management

Control who can access your provider organization and what each user do after they sign in.

Important:

User management is available only at the organization level.

User management helps you control who can access the provider organization and what each user can do after they are added.

Users
You can control who can access a provider organization by adding users, inviting users, and managing user role assignments and profiles from the Users tab. The Users page displays the list of users who can access the provider organization and provides actions to manage each user. The page lists the users from all registry types, including users with and without assigned roles. The Users list display the following details:
  • Username
  • Email address
  • Associated user registries
  • Assigned roles
  • Associated user groups
  • Associated teams

From the Users tab, you can add users and invite users. For each user, you can manage role assignments, view the user profile, and delete the user. For more details, see Adding users to your provider organization, Inviting users to your provider organization, Editing user roles in your provider organization, , and Viewing user profiles in your provider organization.

User groups
A user group is a collection of users that helps you manage multiple users as a single entity within a provider organization. The User groups tab lists the users from all registry types and displays the following details
  • Assigned roles
  • Associated users
  • Associated teams
You can search for users by their full username to add them to a group. you can assign roles to a user group to apply role permissions to all members at once, simplifying bulk access management. For more information. see Adding user groups to your provider organization, Editing user groups in your provider organization, Viewing user group profiles in your provider organization, Deleting user groups from your provider organization.
Teams
A team is a collection of user groups and assets within the provider organization. Only the user groups added to a team can access that assets of the team. Assets not assigned to any team are accessible to all users in the provider organization. A team groups related user groups and LDAP groups to help administrators organize users within the provider organization.
A team can include:
  • User groups, referenced by their user_group_urls
  • LDAP groups, defined by attributes such as the user_registry_url, LDAP group DNs, and optional LDAP filter components
From the Teams page, you can add new team, edit an existing team, and view the profile details of the team. For more information, see Adding teams to your provider organization, Editing teams in your provider organization, Viewing team profiles in your provider organization, Deleting teams from your provider organization.
Roles
Roles define what actions a user and user group can perform. When you add or invite a user, you can optionally assign roles such as API administrator, Community manager, Administrator, Developer, Viewer, and Member. You can create, update, or remove role assignments for a user by using the role assignment actions for that user. For more information, see .
Note: Available roles can vary by configuration. For some users, the role assignment option might include additional roles such as Owner based on the configuration.