Impossible Cloud Storage Help
  • Company overview
    • What is Impossible Cloud
  • Getting Started
    • Getting Started with Impossible Cloud Storage
      • Setting up
      • Next steps
      • Getting support
  • Impossible cloud storage Guide
    • Storage Console URLs and API Endpoints
    • Storage Console
      • Accessing the console
        • Signing up for Impossible Cloud Storage
        • Signing in to Impossible Cloud Storage
        • Session lifetime limits
      • Interacting with the console
        • Navigating the menu
        • Using the panel
    • Buckets and Objects
      • Creating a bucket
      • Storing objects in a bucket
      • Interacting with objects
      • Creating folders in a bucket
      • Interacting with folders and buckets
      • Public File Sharing via URLs
      • Emptying a Bucket
      • Limitations
      • Versioning and object lock
        • Enabling versioning
        • Using versioning
        • Enabling object lock
        • Using object lock
    • Access keys
    • CLI User Guide
      • AWS CLI installation instructions
      • AWS CLI configuration
      • Using Impossible Cloud with AWS CLI
      • AWS CLI basic commands
      • AWS CLI advanced commands
        • Examples
      • AWS CLI for cloud-to-cloud migration scenarios
      • AWS CLI Credentials & Config chain
      • AWS CLI: IAM
        • Limitations
        • List of supported operations
        • Operations Descriptions and Examples
    • Usage
      • Storage Calculation
      • Fair use policy
    • Profile settings
      • Multi-Factor Authentication (MFA)
        • Enabling and Disabling MFA
        • MFA Reset
        • Organization-Wide Policies
  • Security
    • Securing Your Data
    • Identity Access Management (IAM)
      • Managing Users
      • Managing Groups
      • Managing Policies
    • CORS support
      • Limitations
      • CORS Configuration
  • Troubleshooting & Common Questions
    • Common errors
      • I can only see 'buckets' and 'keys' in the menu of the console
      • I can delete objects despite object lock & retention enabled
      • Cannot remove bucket [name]. The bucket you tried to delete is not empty. You must delete all ...
      • Errors while creating a bucket
    • FAQ
      • How to collect HAR log
      • How does pricing work?
      • What are the rules for setting a password?
      • What are the rules for naming buckets?
      • How to retrieve your CanonicalID
      • How to delete thousands of objects via aws cli
      • How does Impossible Cloud handle tax collection?
  • Integrations with other applications
    • Backup Software Integrations Guides
      • Acronis Cyber Infrastructure: creating a backup storage
      • Backup Exec: configuring Cloud Storage
      • Comet Backup: creating a storage vault using storage templates
      • Duplicati: adding a Backup Destination
      • HYCU: adding a Target
      • Impossible Surveillance Cloud
        • Step 1: Create a bucket in Impossible Cloud Console
        • Step 2: Create a subuser and assign policy
        • Step 3: Indentify VMS
          • XProtect
          • MOBOTIX
          • Siviellance
          • Velocity Vision
          • Other
      • MSP360: configuring a Storage Account in the management console
      • Nakivo: creating a Backup Repository
      • Tiger Bridge: configuring Tiger Bridge Target
      • Veeam: adding a Backup Repository
      • Storware: Adding a Backup Destination
    • Cloud Storage Browsers Integrations Guides
      • Cyberduck
        • Using Cyberduck with Impossible Cloud Storage
      • S3 Browser
        • Configuring S3 Browser with Impossible Cloud Bucket
      • CloudBerry Explorer
        • Adding a new Storage Account
      • CloudBerry Drive
        • Add Storage Account in CloudBerry Drive
    • Media Management Software Integrations Guides
      • Iconik: Media Management & Collaboration tool
        • Iconik Integration: Configuring Cloud Storage
    • NAS Applications Integrations Guides
      • QNAP Hybrid Backup Sync
        • Creating a Backup Job to Impossible Cloud Storage
      • Synology Hyper Backup
        • Creating a Backup Task to Impossible Cloud Storage
  • Other support resources
    • Other support resources
    • Impossible Cloud Management Console (ICMC)
Powered by GitBook
On this page
  • Creating a User
  • Deleting a User
  • Managing Users as a Root User

Was this helpful?

  1. Security
  2. Identity Access Management (IAM)

Managing Users

PreviousIdentity Access Management (IAM)NextManaging Groups

Last updated 13 days ago

Was this helpful?

When accessing the Impossible Cloud Storage Console as a root user, you can create sub-users to give other people access to the console.

The Users tab serves as the single-source-of-truth for all users registered in your organization. You can add, filter, and delete users (sub-users) as well as edit the assigned rights, including assigning group memberships and access keys.

The Users tab is only available for root users - and accordingly also conducting any of the above actions.

Creating a User

To add users, follow these instructions:

  1. Navigate to the Users tab on the left-pane.

  2. Click on the Add User button on the top-right of the console.

  • Fill in the user's email and password to give them access to the console.

  • Inform the recipient about the account details.

Refer to our on rules for setting a password.

Deleting a User

To delete users, follow these instructions:

  1. Navigate to the Users tab on the left-pane.

  2. Click on the delete icon next to the user.

  3. Confirm the deletion.

Managing Users as a Root User

The root user has full administrative control, including the ability to manage access and permissions for all sub-users in the account. This includes assigning permissions, managing access keys, and updating user metadata such as tags.

Permissions for sub-users can be managed in two ways:

  • Group-Based Policies: Sub-users assigned to one or more groups will automatically inherit the permissions defined by the policies attached to those groups.

  • Inline Policies: Alternatively, policies can be assigned directly to individual users through inline policies. This allows for more granular permission control when group-based management is not sufficient.

Additionally, the root user can also create or delete access keys for any sub-user. This facilitates easier key rotation and credential management without requiring direct login access to the sub-user's account.

To manage a sub-user’s settings:

  1. Navigate to the Users tab in the Console.

  2. Click on the desired sub-user to open their management panel.

  3. Use the available tabs — Groups, Tags, Access Keys, and Inline Policies — to manage each aspect of the sub-user's configuration.

These tools give the root user fine-grained control over user permissions and credentials, helping enforce security and compliance standards efficiently.

relevant documentation