Identity and access management

For tailoring Cloud Snapshot Manager users' capabilities to align with their responsibilities, Cloud Snapshot Manager provides Role Based Access Control (RBAC).

Cloud Snapshot Manager RBAC enables protection of resources across both AWS and Azure securely through a common set of RBAC policies. An integrated super administrator, Super Admin, can create different roles and RBAC policies outlining what actions users are allowed to perform and what resources they have access to. The Super Admin has total control over the Cloud Snapshot Manager account.

To set up access controls for users, you have to first create a role, then create an RBAC policy, and then assign the policy to a user. Roles are used to grant permissions for different actions a user can perform in CSM. RBAC policies define the domain of the resources, that is, cloud accounts for a role and is assigned to users to limit their access. Users are created using their email addresses and are granted access or privileges to CSM by a specific RBAC policy that is assigned to them.

NOTE: Cloud Snapshot Manager RBAC policies may be configured to limit access to certain features in CSM. Contact your Cloud Snapshot Manager administrator to review the RBAC policies as required.

In this section, you can perform the following tasks:

• Create a role
• Create an RBAC policy
• Add a user and assign RBAC policies
• Delete a user
• Generate API credentials
• Reset key secret