Infuse IoTInfuse Docs
DocsGuidesAPI ReferenceResourcesConsole
Get StartedAdmin CenterIoTDBMarketplaceAnalyticsConcepts
IAM & Access

Users, Groups, and Roles

Organise human access with organisation groups and role assignments.

Users are invited into organisations. IAM groups and roles make access easier to manage when several people need the same product or API access.

For basic organisation administration, start with Members and Invitations and Member Roles.

Users

A user is a person who can sign in to Infuse and access one or more organisations.

Invite users from Access > Members. After an invitation is accepted, the user appears in the organisation member list and can be selected for access workflows.

Groups

Groups collect member principals so access can be managed in one place.

Use groups when:

  • multiple people need the same access,
  • a team changes often,
  • you want to remove or add access without editing each user individually,
  • you need a consistent access pattern across product workflows.

Create a Group

  1. Open Access > Groups.
  2. Select New group.
  3. Enter a group name.
  4. Add an optional description.
  5. Select the member principals that should belong to the group.
  6. Save the group.

The group is created in the current organisation. If you switch organisations, the groups list changes to that organisation.

Edit or Delete a Group

Open Access > Groups, then select the group.

From the group detail page you can update the group name, description, and members. You can delete a group from the groups list when it is no longer needed.

Roles

Roles describe what a principal can do. A role contains one or more permissions and can declare which principal types it supports.

Use Access > Roles to review the organisation-scoped roles available to your organisation. The roles list shows the role name, scope, number of permissions, and supported principal types.

Review a Role

Open a role to see:

  • role metadata,
  • the permissions included in the role,
  • any conditions attached to the role,
  • the members currently assigned to the role.

System roles cannot be managed from the tenant console.

Assign a Role to Members

  1. Open Access > Roles.
  2. Select an organisation-scoped role.
  3. In Assigned members, choose the members that need the role.
  4. Save the assignment.

Only organisation-scoped roles for the current organisation can be assigned from the tenant console.

Revoke a Role Assignment

Open the role detail page and remove the assignment from the assigned members list.

Revoking a role assignment removes the access provided by that role. It does not remove the user from the organisation.

IAM and Access

Manage organisation access for members, groups, roles, and API-key integrations.

Permissions

Understand role permissions and the IAM permissions catalogue.