Skip to main content

Manage access to the global router

Access to the global router is governed by a role model that defines access within an account and project. Refer to the Access Control in Servercore Products manual for more information.

member

User with full access to all services. Access control is not available for: users, service users, user groups and federations.

Access areas
  • Account;
  • project
Who can be prescribed
  • Users;
  • to service users;
  • user groups
Available global router operations

In the Account access area:

  • View a list of global routers, the networks and subnets connected to them, and a list of static routes on the router;
  • Create, modify, and delete global routers;
  • adding, modifying, and deleting static routes on a global router;
  • Change the name of the networks and subnets connected to the global router;
  • Connect to a global router on an existing or new network and subnet of the cloud platform;
  • connect to the global router of an existing or new network and a subnet of dedicated servers;
  • Removing the cloud platform network or subnet from the global router network, including removing the cloud platform network or subnet itself;
  • Removing a network or subnet of dedicated servers from the global router network

In the access area Project global router operations are not available

iam_admin

User with access to user management and without access to services and billing. Cannot manage his account: change permissions, manage notifications, delete the user. The first user with the iam_admin role is created by the Account Owner.

Access areasAccount
Who can be prescribed
  • Users;
  • to service users;
  • user groups
Available global router operations

reader

A user with access to view everything he controls member in the same access area.

Access areas
  • Account;
  • project
Who can be prescribed
  • Users;
  • to service users;
  • user groups
Available global router operations

In the Account access area:

  • View the list of global routers, connected networks and subnets, list of static routes on the router

In the access area Project global router operations are not available

global_router.admin

User with access to manage global routers in the account. Does not have access to other products.

Access areasAccount
Who can be prescribed
  • Users;
  • to service users;
  • user groups
Available global router operations
  • View a list of global routers, the networks and subnets connected to them, and a list of static routes on the router;
  • Create, modify, and delete global routers;
  • adding, modifying, and deleting static routes on a global router;
  • Change the name of the networks and subnets connected to the global router.

Other operations on global router networks additionally require the following role member (Project or Account access area):

  • Connect to a global router on an existing or new network and subnet of the cloud platform;
  • connect to the global router of an existing or new network and a subnet of dedicated servers;
  • Removing the cloud platform network or subnet from the global router network, including removing the cloud platform network or subnet itself;
  • Removing a network or subnet of dedicated servers from the global router network

global_router.viewer

User with access to view global routers and their networks. Does not have access to other products.

Access areasAccount
Who can be prescribed
  • Users;
  • to service users;
  • user groups
Available globally router operations
  • View a list of global routers, networks and subnets connected to them, a list of static routes on the router