Security Requirements and Controls
Assigning permissions to individual users in larger organizations can be a cumbersome task. LogScale allows you to create groups and either manage user memberships directly in LogScale or by synchronizing with an external system.
Either way you need to create groups in LogScale first.
Then you need your group to have users and permissions assigned to it. Any
user who is assigned the
Change user access permission can assign permissions to groups for a
You need to be an Organization owner on Cloud, or have the
Manage Users to create
groups and assign them users and permissions.
If you intend on administering access to repositories and views
centrally by an organization owner or root only be sure not to give out
Change user access
permission to anyone. In practice this means removing the permission
from all roles thus not allowing any users to go to a repository or view
and add another user or group directly.
Creating New Groups
Click on your profile avatar in the upper right corner and select Organization Settings then Users and Permissions →
Groupson the left.
Click +Add to create a new group.
Enter a group name, such as "Operations", and select the group type your new group should belong to (see all types described at Permission Levels), then click Next:
Figure 48. Creating Groups
For the Repository and view group type, choose whether the group should apply a role to a selection of repositories and views or to all current and future repositories and views.
Select a preferred set of permissions among those available on the left and click Apply permissions: you now have an empty group with no users assigned.
Figure 49. Assigning Permissions
Afterwards your user will be in the
Only users who have accepted the email invitation and completed the first log-in process can be added to a group.
Changing or Removing Roles
You can modify the role assigned to a group — that is, its set of permissions — at your convenience.
Go to Users and permissions →
Groupsand select your group from the list of available groups. You can search if the one you are looking for is not immediately visible in the list, or filter by type.
Click the Permissions tab of the selected group and click Change Role .
Select a different group role form those available from the left and click Apply permissions: your group has now switched to the new role.
Figure 53. Changing Permissions to Groups
Click Delete Role from the same Permissions tab if you need to remove a group role.