Skip to main content

Manage access to File Storage

Access to File Storage is governed by a role model that defines access within an account and project. See the Access Control in Servercore Products manual for more information.

member

A user with full access to all services. Does not have management access for: users, service users, user groups, and federations.

Access scopes
  • account;
  • project
Who can be assigned
  • for users;
  • service users;
  • user groups
Available operations with File Storage

In the Account access scope:

  • view the list of all file storages and their details: name, size, storage type and protocol, IP and network name, status;
  • view access rules for file storages;
  • create and manage file storages;
  • create and manage file storage networks;
  • create and manage access rules

In the Project access scope:

  • view the list of all file storages and their details: name, size, storage type and protocol, IP and network name, status;
  • view access rules for file storages;
  • create and manage file storages;
  • create and manage file storage networks;
  • create and manage access rules

reader

User with access to view everything that member manages in the same access scope.

Access scopes
  • account;
  • project
Who can be assigned
  • for users;
  • service users;
  • user groups
Available operations with File Storage

In the Account access scope:

  • view the list of all file storages and their details: name, size, storage type and protocol, IP and network name, status;
  • view access rules for file storages

In the Project access scope:

  • view the list of all file storages and their details: name, size, storage type and protocol, IP and network name, status;
  • view access rules for file storages

billing

User with access to billing management and no access to service management.

Access scopesAccount
Who can be assigned
  • for users;
  • service users;
  • user groups
Available operations with File Storage
  • billing management

iam.admin

A user with access to managing users and without access to services and billing. Cannot manage their own account: change permissions, manage notifications, or delete a user. The first user with the iam.admin role is created by the Account Owner.

Access scopesAccount
Who can be assigned
  • for users;
  • service users;
  • user groups
Available operations with File Storage

iam.viewer

User with access to view everything managed by iam.admin.

Access scopesAccount
Who can be assigned
  • for users;
  • for service users;
  • for user groups
Available operations with file storage

filestorage.admin

A user with access to File Storage management. Does not have access to other products.

Access scopes
  • account;
  • project
Who can be assigned
  • for users;
  • for service users;
  • for user groups
Available operations with file storage

In the Account access scope:

  • view a list of all file storages and their details: name, size, storage type and protocol, IP and network name, status;
  • view file storage access rules;
  • create and manage file storages *;
  • create and manage access rules

In the Project access scope:

  • view a list of all file storages and their details: name, size, storage type and protocol, IP and network name, status;
  • view file storage access rules;
  • create and manage file storages *;
  • create and manage access rules

* In addition to the filestorage.admin role, the user must have a role with access to manage cloud platform networks to connect a file storage network.

filestorage.viewer

A user with access to view File Storage. Does not have access to other products.

Access scopes
  • account;
  • project
Who can be assigned
  • for users;
  • for service users;
  • for user groups
Available operations with file storage

In the Account access scope:

  • view a list of all file storages and their details: name, size, storage type and protocol, IP and network name, status;
  • view file storage access rules

In the Project access scope:

  • view a list of all file storages and their details: name, size, storage type and protocol, IP and network name, status;
  • view file storage access rules