Roles
Use the page to define user roles for the users. You can create either an operator role or reseller admin role.
Each user needs to be defined with the set of user rights and privileges to perform a specific set of operations on the resources of the account to which it belongs. In the authentication and authorization process, an object user is identified in the IBM Spectrum Scale system by the attributes such as user ID, password, account ID, role, and domain ID. When the user is authenticated, the keystone server provides a list of services and a token to the user to access the services.
You can create the following types of user roles in object storage:
- Operator: Only users with operator role can create accounts and containers.
- Reseller administrator: Only users with reseller admin role can access all accounts and set quota for each account.