Creating an IAM user with Organization permissions
An IAM user can be created that can access the Asset Management and Organization portals by defining user type and portal access in the IAM portal. By defining the access type and OU permission scope, the IAM user can have various levels of control over Organization features in the Asset Management portal.
The following demonstrates the general process of creating an Organization type IAM user with access to the Asset Management portal and Organization features:
-
Log into the IAM portal with the Organization admin account.
-
Create an Organization type permission profile for the Asset Management portal:
-
Go to Permission Profiles.
-
Click Add New.
-
Enter a name and set the status to Active.
-
Select Organization from the Select A Type dropdown menu.
-
Click Add Portal.
-
Select Asset Management.
-
Click Add.
-
Select the resource permissions.
-
Click Save.
-
-
Create an Organization type IAM user:
-
Go to Users.
-
Click Add New and select the type of user you would like.
-
Enter the user details and click Next.
-
Select Organization from the Select a Type dropdown menu.
-
Select the Organizational Unit the user can access from the Permission Scope field.
-
Select the permission profile created in the previous step.
-
Click Next.
-
Click Confirm.
-
-
Log in as the Organization IAM user to view the OU or account selection screen.
-
Select an OU for the OU view.
-
Select a FortiCloud account to switch the Asset Management portal to the selected account.
-
For a more detailed process on creating users within Organizations, see Permission profiles within Organizations and Creating users, user groups, and roles within Organizations in the Identity & Access Administration Guide. |