https://docs.nirmata.io/docs/control-hub/identity-access/Recent content in Identity and Access on Nirmata DocumentationHugoenMon, 01 Jan 0001 00:00:00 +0000https://docs.nirmata.io/docs/control-hub/identity-access/users/Mon, 01 Jan 0001 00:00:00 +0000https://docs.nirmata.io/docs/control-hub/identity-access/users/<p>An account can have multiple users, and each user has a role that defines what they can see and do. When a new account is created, the first user has an <em>admin</em> role which allows that user to create and manage additional users for the account.</p> <h2 id="user-roles-and-description">User roles and description</h2> <p>The following user roles are available:</p> <table> <thead> <tr> <th>Role</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><strong>admin</strong></td> <td><em>admin</em> users have full access to the account and can manage other users and their access.</td> </tr> <tr> <td><strong>platform</strong></td> <td><em>platform</em> users can access all resources including Compliance, Inventory Report, and Policies, but cannot manage users.</td> </tr> <tr> <td><strong>security</strong></td> <td><em>security</em> users can view the Policy Report and manage Policy Exceptions. They have the privilege to review Policy Exception requests and have access to Compliance, Clusters, and Repositories, but cannot manage users.</td> </tr> <tr> <td><strong>devops</strong></td> <td><em>devops</em> users have the least privileged access. A devops user can view the Policy Report and create Policy Exceptions. They do not have access to Compliance, Inventory Report, and cannot manage users.</td> </tr> </tbody> </table> <h2 id="configuring-user-roles-and-permissions">Configuring user roles and permissions</h2> <p>Identity &amp; Access Management (IAM) lets you add users, set user privileges, group users in teams, and configure access methods such as Security Assertion Markup Language (SAML), OpenID Connect (OIDC), and Multi-Factor Authentication (MFA).</p>https://docs.nirmata.io/docs/control-hub/identity-access/teams/Mon, 01 Jan 0001 00:00:00 +0000https://docs.nirmata.io/docs/control-hub/identity-access/teams/<p>In Nirmata, users can be organized into <em>teams</em>. A team is a logical entity that allows you to manage permissions for a group of users who require shared access to organizational resources. Each team can include multiple users, each with specific roles and permissions.</p> <hr> <h2 id="adding-a-team">Adding a Team</h2> <p>To create a new team:</p> <ol> <li>Navigate to <strong>Identity &amp; Access &gt; Teams</strong>.</li> <li>Click the <strong>Add Team</strong> button. The <em>Add a New Team</em> page will appear.</li> <li>In the <strong>Name</strong> field, enter the team’s name.</li> <li>In the <strong>Description</strong> field, provide a brief description of the team.</li> <li>To add users: <ul> <li>In the <strong>Users</strong> section, click the <strong>Add Users</strong> button.</li> <li>In the search field, enter the user’s name and select the checkbox next to it.</li> </ul> </li> <li>To assign namespace access: <ul> <li>Click the <strong>Add Access Control</strong> button.</li> <li>In the search field, enter the desired namespaces and select the corresponding checkboxes.</li> </ul> </li> <li>Click <strong>Create</strong> to finalize the team.</li> </ol> <hr> <h2 id="editing-or-deleting-a-team">Editing or Deleting a Team</h2> <p>To edit a team:</p>