Permission profiles within Organizations

Permission profiles are required before you can create IAM users, user groups, and so on. Permission profiles allow you to define access to portals and the level of access within the portal, such as admin or read only permissions. When creating an IAM user, user group, and so on while having access to OUs in the Organization portal, a permission scope must be defined to allow for current account access, OU access, or OU account access.

If you have organizations enabled and created in the Organization portal, permission profiles can be created for a specific OU or OU account using the Organization type, or the current account using the Local type. Once a permission profile is created, IAM users, user groups, and so on can be created and assigned to the permission profile.

To create a permission profile:

1. Select Permission Profiles from the left-hand navigation menu. The Permission Profiles page opens.

2. Select Add New. The New Portal Permission Profiles page is displayed.

   

3. Enter a name for the profile in the Permission Profile Name field.

   Once the permission profile is saved, the permission profile type cannot be edited.

4. Set the Status to Active.

5. Enter a description of the portal permissions in the Description field.

6. Select the profile type from the Choose A Type dropdown.

   

   Once the permission profile is saved, the type cannot be edited.

7. Click Add Portal. A list of available portals is displayed.

   

8. Select the portals you want to include in the permission profile.

9. Click Add. The portals are displayed in cards.

   

10. For each portal card:

    1. Enable Access.

    2. Select the Access Type.

    3. Select Additional Permission as required.

    Some portals use resource-based permission profiles. See Permission profiles and Creating a permission profile for more information.

11. Click Save. The permission profile is now available to be assigned to users.