CloudBolt Admins can create new users, associate users to Groups, and assign multiple types of roles.

  1. In the Admin tab, click Users.
  2. Click the email address of a user to view their profile, their assigned Groups and roles within that Group, and edit their Permissions.
  • Users: Create users directly in CloudBolt or through an external authentication system (such as LDAP).
  • Groups: Contain users and are associated with Environments.
  • Group Roles: Provide users in a Group certain privileges for Environments associated with that Group. For example, a user could be made a requestor in a group called ‘Finance Dept’, which would allow them to request servers in all Environments the Finance Dept can access.
  • Special Roles: These roles contain permissions that are automatically granted to users who meet certain criteria for objects (server owner for example). These roles are not shown on the Group or User details pages.
  • Global Roles: Provide Users certain global privileges (such as the CloudBolt Admin role).

The permissions afforded to roles, as described above, can include permissions for default CloudBolt functionality (such as server.control_power) as well as Server Actions and Resource Actions. The permissions for running Server Actions and Resource Actions can be granted individually or in bulk.