Follow these recommendations for using Identity and Access Management to ensure the security of your Equinix resources.
Grant least privilege
The Principle of Least Privilege (PoLP) is an information security concept where a user has the minimum levels of access – or permissions – needed to perform their job functions. PoLP extends beyond user access as it creates automatic resource controls within a system hierarchy.
Granting PoLP means giving users only the required permissions to perform tasks or access resources. Your Primary or IAM Admin must decide what users need to act upon and assign them only the appropriate roles.
Allow roles to manage permissions
Rather than creating custom permissions, allow the built-in roles and permissions to manage access to your projects and assets. This approach requires less overhead, allowing you to focus on administering the overall hierarchy, organizations, and projects.
Note: Custom Roles allow you to select only the permissions that you want for a role of your own design.
Designate additional Primary Admin user
Carrying out certain tasks requires permissions available only in the Primary Admin role. Assign the Primary Admin role to another user within your organization to help you with day-to-day operations.
Related Topics