Manage Users and Assign Roles

Note: Only users with the role of:

- Global Admin or Cloud Admin can view the screens / perform the functions described below.

- Global Security Admin can assign security services roles (eg. Fortinet Management roles) to another user.

The Manage Users screen allows you to manage CloudCreator users and assign roles at a parent or child cloud level.

Topics

 

Create a New User and Assign Role Access

Follow these steps to create a new user and assign role access:

 

1. Click the Virtual Clouds icon   in the sidebar.

 

2. If your company is using multiple virtual clouds, select All clouds at the top of your screen. Then select either the parent or a child cloud from the dropdown menu.

 

 

3. From the Summary screen for your virtual cloud, click the Options Cog > Manage Users.

 

 

4. The Manage Users screen shows all the current user accounts for your cloud. Select either Create CloudCreator User or, Create BYO Identity User.

 

You can find out more about BYO Identity here

 

 

5. In the Create User window, complete the fields (scroll down) and assign the required roles. Use the table in the next step if you need help. 

 

Note: If you are creating a BYO Identity user, you'll only see a limited number of fields to be completed. These are shown below.

 

     Example: Create CloudCreator User

 

     Example: Create BYO Identity User

 

6. Use this table to complete the Create User screen. If you are creating a BYOI User, you'll only see a limited number of fields to be completed.

 

Field What to enter
Username

Must be a unique username, and must have no spaces. eg. JohnSmith, JSmith, etc.
First Name First name
Last Name Last name
Password Your user password. This must meet the following criteria:
  • Is at least 10 characters long.
  • Has not been used as one of your last 8 passwords.
  • Is not an 'easy to guess' password such as 'Password 123'.
  • Has no more than 4 consecutive characters matching your username.
  • Contains at least 5 different characters with no single character repeated 3 or more times.
  • Contains at least one character from 3 of these 4 character sets:
    • English uppercase characters (A through Z).
    • English lowercase characters (a through z).
    • Base 10 digits (0 through 9).
    • Non-alphabetic characters (for example !, $, #).
Confirm Password  Re-enter your password
Token Type

Select either SMS token (recommended) or Soft token. See How to Log In for more information about token.
Mobile Phone Type

Only required if Soft Token is selected above.
Email Enter a valid email address.
Phone

Phone number, starting with the country code and area code, with no spaces, eg. +644123456
Mobile Phone

Mobile phone number, starting with the country code and area code, with no spaces, eg. +6421345678
Temporary PVN
(personal verification number)
Enter a temporary PVN between 4-8 digits in length. The user will be required to change this the first time they log into CloudCreator.

Role Access

 
Select the required role(s) type for the user. More than one role can be added.
 
See Roles and Permissions for more information.
 
Important Notes on Roles:
 
  • The Global Admin role must be assigned with caution. It has the power to manage every role for every cloud (both Parent and Child cloud levels). It may be more appropriate to make the user an admin for specific subscriptions.
  • The Cloud Admin role is the most powerful role when creating a new user at Child cloud level. It has the power to manage the selected Child cloud, including adding and deleting users. It may be more appropriate to make the user an admin for specific subscriptions.
  • The Global Security Admin role manages the Network Security Services of a Parent or Child cloud. To enable the role of Global Security Admin user (for the first time), please contact your Client Engagement Manager or the Service Desk Team. 
Cloud Services Tab
Select a tab to assign the required roles to the user.
 
Only the services that your organisation is subscribed to will appear as options on these tabs.
 
To find out more about roles and permissions, see Cloud Services Roles and Permissions.
 
 
Network Security Services Tab

 

7. When all the fields have been completed, click Save. The new user will be created and display in the list of users.

 

8. The new user will receive an email with their login credentials. 

 

 

Create BYOI Users with Multiple Logins

In rare cases, you may have a single Bring Your Own Identity (BYOI) user who needs two distinct logins to CloudCreator. For example, a user may log in as a Global Admin each day, but on rare occasions may need to log in as a Global Security Admin.

 

In this case, we recommend the user is set up as two users in your Identity Provider, (e.g. Joe.Bloggs@BlueSkyes.com and Joe.Bloggs.GSA@BlueSkyes.com) and set up as two corresponding CloudCreator users, each with different CloudCreator roles. The benefit of this approach is that your organisation has greater internal visibility over enabling and disabling access to CloudCreator for each of the logons the user may require.

 

An example of the Create User screen for a BYO Identity User is shown below. For more details, see Create a New User and Assign Role Access above.

 

If your organisation doesn't want to operate multiple instances of a user inside your Identity Provider, you can still operate multiple logins for a single user in CloudCreator. To do this, set up a BYOI logon and another using the 'traditional' CloudCreator user management functionality. You can find out more about BYO Identity here

 

 

Edit a User's Details and Role Access

Follow these steps:

 

1. At the top of the Summary screen for your virtual cloud, click the Options Cog > Manage Users.

 

 

2. The Manage Users screen appears showing the current user accounts for your cloud. Search for the user and click Edit next to their name.

 

 

3.  In the Edit User window, update the fields and/or roles (scroll down). Use the table below as a guide.

 

Note: You can't modify these fields: User Name, First Name, Last Name.

 

 

4. Use this table to complete the Edit Users screen.

 

Field What to enter
Token Type
Select either SMS token (recommended) or Soft token. See How to Log In for more information.
Mobile Phone Type

Only required if Soft Token is selected above.
Email Enter a valid email address.
Phone
Phone number, starting with the country code and area code, with no spaces
eg. +644123456
Mobile Phone
Mobile phone number, starting with the country code and area code, with no spaces
eg. +6421345678
Temporary PVN
(personal verification number)
Enter a temporary PVN between 4-8 digits in length. The user will be required to change this the first time they log into CloudCreator.

Role Access

 

Update the required role(s) type for the user. More than one role can be added.

 

See Roles and Permissions for more information.

 

Important Notes on Roles:

  • Users must logoff and logon again to CloudCreator for any changes made to user roles to apply.
  • The Global Admin role must be assigned with caution. It has the power to manage every role for every cloud (both Parent and Child cloud levels). It may be more appropriate to make the user an admin for specific subscriptions.
  • The Cloud Admin role is the most powerful role when creating a new user at Child cloud level. It has the power to manage the selected Child cloud, including adding and deleting users. It may be more appropriate to make the user an admin for specific subscriptions.
  • The Global Security Admin role manages the Network Security Services of a Parent or Child cloud. To enable the role of Global Security Admin user (for the first time), please contact your Client Engagement Manager or the Service Desk team.
Cloud Services Tab
Select a tab to assign or remove roles for the user.
 
Only the services that your organisation is subscribed to will appear as options on these tabs.
 
To find out more about roles and permissions, see Cloud Services Roles and Permissions.
 
Network Security Services Tab

 

5. Click Save when you've finished updating the fields. The user's details will be updated.

 

Delete a User

 

Warning: This action cannot be undone.

Follow these steps:

 

1. At the top of the Summary screen for your virtual cloud, click the Options Cog > Manage Users.

 

 

 

2. The Manage Users screen appears showing all the current user accounts for the selected cloud. Search for the users name and click the red cross  next to their name. 

 


3. In the Delete User window click Delete to confirm. 

 

 

4. The user will be deleted and removed from the Manage Users screen. 

Reset a User's Password

Follow the steps below to email a reset password link to a user.

 

Note: This link is time sensitive and will expire if not used. The user's current CloudCreator password will remain unchanged, and usable, until they use the link.

 

1. At the top of the Summary screen for your virtual cloud, click the Options Cog > Manage Users.

 

 

2. The Manage Users screen appears showing all the current user accounts for your cloud. Search for the user and click the Reset Password link next to their name.

 

 

3. In the Reset Password screen, click OK to confirm. 

 

 

4. The user will receive the email below with a reset password link. You'll also see a notification at the top of your screen.  

 

 

The page cannot be found

The page you are looking for might have been removed, had its name changed, or is temporarily unavailable. Please make sure you spelled the page name correctly or use the search box.