Role-Based Access Controls

Overview of the role based access controls and permissions for the MyCloudIT platform and how to manage user access.

In the new MyCloudIT platform, apply specific role-based access controls (RBAC) to users when you add new or update users. Assigning users to a specific RBAC role only applies to the users utilizing the MyCloudIT platform and does not effect their access and permissions currently assigned in Azure portal.

There are 3 primary RBAC roles:

  • Administrator: Grants the user create, edit, delete, and all special permissions.
    • Use Case: Administrator is the only RBAC role that can remove a deployment, remove/delete a session host, or disable a user in the platform, for example.
    • An Administrator is the only RBAC role where you can change a user's RBAC role.
  • Contributor: Grants the user create and edit permissions but not delete or special permissions.
    • Use Case: Contributors can create a new deployment, add a new session host, or add a new user to the platform, for example, but cannot remove the deployment, remove/delete a session host, or remove a user from the platform.
    • In this RBAC role, specific links and buttons will be not accessible.
  • Viewer: Grants the user the view permission only.
    • Use Case; Viewers cannot create a new deployment, add a new session host, or add a new user to the platform, for example.
    • In this RBAC role, specific links and buttons will be not accessible.

Change RBAC Roles for Users:

RBAC roles are assigned when you add a new user to the MyCloudIT platform, changes can be made in the Account's page at anytime. Only a user with the Administrator RBAC role can make any changes.

  1. Log in to the MyCloudIT portal and if applicable to the correct customer.
  2. Navigate to the top right hand corner where the your name and the account name is location.  Click on the drop-down and click on the Accounts.
  3. In the Accounts page, click on the Users sub-menu.
  4. In the Users table, locate the user and click on the their RBAC role link in the Roles column.
    1. Note: If you are not an Administrator, the links are not accessible.
  5. In the User Access modal, make changes and click on the Update button.