Skip to content

Users

The users within HyperCloud are individuals defined by a username and a password that is used to login to the dashboard. Each user is stored with a unique ID and is assigned to at least one group. Upon successful deployment of HyperCloud, there will be two administrative accounts or users, the serveradmin and the admin.

Initial User List

The different types of users available in HyperCloud are:

  • Cloud administrators (oneadmin) which are created when HyperCloud is first started using the ONE_AUTH data. The oneadmin account has elevated privileges that allow it to perform any operation on any object within the system.

Info

If any other users are created and assigned to the oneadmin group, they will have these same privileges.

  • Infrastructure user which has semi-elevated privileges that allow access to most of the system's functionality to manage resources.
  • Group administrators which manage a limited subset of resources and users.
  • Users which are the basic individuals that have simplified views and limited access to create objects (e.g. VMs) at the group admins' discretion.
  • serveradmin which is also created during the HyperCloud initialization. The password is created randomly, and the account is used by the GUI front end to communicate to the backend API.

Creating users

To create a new user, navigate to System -> Users on the dashboard's left navigation menu and click the green + button to open the wizard.

User Menu Link

Create User

The wizard requires a few fields to be populated, as seen above.

  • Provide a username
  • Provide an initial password (can be changed later)
  • Select authentication method
  • Assign user to one main group, and optionally, many others.

If you are a service provider for a multi-tenant customer, you can be the main point of contact within the customer organization, and have membership across all their tenants.

An overview of permissions

Groups can provide a platform for resource management and use within the cloud infrastructure; however, Access Control Lists (ACLs) can provide blanket rules for the cluster(s) to restrict or allow certain access and privileges.

ACLs provide granularity to the control allowed across an entire cloud infrastructure and are globally replicated across zones, which is convenient for multi-site deployment.

Creating an ACL has a similar starting point to most everything from the Dashboard. The creation screen can be found under System -> ACLs, from there click the green + button and work through the options in the wizard and click the green Create to finalize and initialize the ACL Rule.

ACL Wizard

  • The ACL Rules can apply at many levels: user, group, and/or zone.
  • Select affected resources
  • Select resource subset filter
  • Select allowed operations

Deleting a user

As with groups, if a user is assigned as the owner/manager of an object within HyperCloud, prior to its deletion, those assignments must be voided to allow the system to cleanly remove the user's identification and access.