Permissions

Permissions give roles their functionality through an industry standard based IAM permissions structure.

To view the permission details for any role, click its Role Name or hover over and choose View Role Details.

Each permission takes the form of: Service.Resource.Verb, with Service being the IAM service that is called, Resource defined as the system resource acted upon, and Verb defining the action that is permitted for that permission.

Example: To enable an organization viewer role in the resource hierarchy, the permission value: resourcemanager.org.read is the correct permission to use. When you want to grant a Network Edge Resource Manager the ability to create virtual devices in IAM, use the permission value networkedge.virtualdevice.create.

Related Topics Link IconRelated Topics