Home > Reference Info > Tables > User Role Privileges

User Role Privileges

Table of Contents

Below is a breakdown of user privileges based on user roles.  The ability to "manage" a section includes the ability to create/edit/delete the object/resource.  To check and see which user role privileges you have across all RightScale accounts to which you have access, go to Settings > UserInfo.  To view a detailed description of each user role, see User Roles (or click the appropriate User Role hyperlink in the tables below).

Actions User Roles (Permissions)
admin observer actor security_
manager
designer library server_
login
server_
superuser
publisher billing enterprise_
manager
Manage RightScale Account          
 View RightScale Account    x                  
 Edit User Preferences (SSH,
 Timezone, Password)1
  x                  
 View estimated cloud billing
 information5
  x               x  
 Send RightScale Account
 Invitations
x                    
 Manage User Roles x                    
 Manage Cloud Credentials x                    
 Register a Private Cloud x                    
 Add a Public/Private Cloud x                    
 Accept Account Group
 Invitations
x                    
 Enable/Disable "Instance
 Available" Email Notifications
x                    
 Customer Usage Reports2  x                    
 Enable Cloud Services (e.g. SQS) x                    
 Log into RightScale API3  x  x  x    x  x  x    x    x
Manage Server Instances          
Actions admin observer actor security_
manager
designer library server_
login
server_
superuser
publisher billing enterprise_
manager
 Manage Deployments     x                
 Manage Server Arrays     x                
 Manage Servers     x                
 Manually run boot, operational, or
 decommission scripts
    x                
 Bundle an Instance     x                
 Tag Servers     x                
 View Initial Password (Windows)     x                
 Log into servers (SSH or RDP)             x        
 Log into servers as 'root' user
(Linux only)
              x      
Manage the Cloud (e.g. AWS, Azure, Google, Rackspace, OpenStack, etc.)          
Actions admin observer actor security_
manager
designer library server_
login
server_
superuser
publisher billing enterprise_
manager
 Launch and terminate instances     x                
 Queues (SQS)     x                
 S3     x                
 Cloudfront     x                
 Personal Images     x                
 EC2 Security Groups        x              
 Create/Use EC2 SSH Keys     x                
 View Private Key Material 
 of SSH Keys4
 x                    
 Elastic/Remappable IPs     x                
 Volumes     x                
 Snapshots     x                

 Elastic Load Balancing (AWS)

 Cloud Load Balancers (Rackspace)

    x                
 Purchase Reserved Instances (AWS) x                    
 RDS (AWS)     x                
 VPC (AWS)     x                
 Share Cloud Resources      x                
 View Cloud Billing Information5                    x  

 Infrastructure Audit Reports

x      x              
Manage RightScale Components         
Actions admin observer actor security_
manager
designer library server_
login
server_
superuser
publisher billing enterprise_
manager
 View Library          x            
 Import from the Library           x          
 View Account Library         x            
 ServerTemplates         x            
 RightScripts         x            
 MultiCloud Images (MCI)         x            
 Cookbooks         x            
 Repositories         x            
 Manage Software Repositories         x            
 Create/Edit/Lock/Delete
 a Macro
        x            
 Run a Macro6     x   x            
 Clone a Macro         x            
 Alert (Specifications)         x            
 Alert Escalations         x            
 Create/Edit Credentials      x                
 View Credential's "hidden"
 value7
x                    
 Publish to the Library                 x    
 Manage Your Publications                 x    
 Share RightScale Components
 (via Account Groups)
                x    
 Send Account Group
 Invitations
                x    
 Accept Account Group Invitations x                    
Manage the Enterprise          
Actions admin observer actor security_
manager
designer library server_
login
server_
superuser
publisher billing enterprise_
manager
 Access to all accounts within
 the Enterprise
                     x
 Grant account access                      x
 Control User Roles across
 the Enterprise
                     x
 Grant 'enterprise_manager' privileges
 to another user
                    x
 Manage Account Group  memberships within the  Enterprise                      x
 Set cost quotas for RightScale
 accounts
                    x
 Download Usage Report for
 the Enterprise
                    x
 Limited access inside the
 Dashboard8
                     
RightScale Cloud Analytics (https://analytics.rightscale.com)
Actions admin observer actor security_
manager
designer library server_
login
server_
superuser
publisher billing enterprise_
manager
 View and analyze historic cost and
 usage
information5
  x               x  
Create new RightScale child accounts x                   x
Connect to new clouds (e.g. AWS) x                   x
Manage other user permissions x                    
 Notes
  1. User preferences are defined on a per-user basis and are used across all RightScale accounts.
  2. Only RightScale accounts that have been properly enabled to view the ServerTemplates Usage Report will see this item in the Dashboard. (Reports > Usage Estimate)
  3. Any user can log in to the RightScale API.  However, once you log in, your user role privileges will take effect.
  4. Only the owner (identified by email) who created the SSH Key and 'admin' users can view/edit the private key material of an SSH Key.
  5. The 'billing' permission only applies if the RightScale account has the "Billing Admin-only" feature enabled. For more information about the 'billing' permission, see The User Roles page. If the "Billing Admin-only" feature disabled (default), any user with 'observer' privileges can view billing related information.
  6. If you run a macro that creates/clones design objects you must have the 'designer' role. 
  7. The user who originally created the credential will also be able to view the hidden value.

 

You must to post a comment.
Last Modified
11:36, 31 Oct 2014

Tags


Announcements

None

Glossary | 用語용어 Site Map | Site Help Community Corporate Site Get Support Dashboard Login
Doc Feedback Product Feedback Resources MultiCloud Marketplace Forums

Dashboard Status


© 2006-2014 RightScale, Inc. All rights reserved.
RightScale is a registered trademark of RightScale, Inc. All other products and services may be trademarks or servicemarks of their respective owners.