CloudCheckr customers have full control over provisioning and managing user access within their account(s). User access can be configured with specific permissions, rights, and visibility based on the needs and role of the user.
Only Administrator users have the ability to manage users within their CloudCheckr account. NOTE: The person that registered the account is given Administrator rights by default.
To access the User Management screen, click on the ‘Users’ link at the top of your CloudCheckr account. This link is not visible to non-Administrator users.
The User Management page will list the email address of each user that currently has access to your CloudCheckr account. You will also see the following information for each user:
- Name – the email address of the user.
- Role – whether they have Administrator, User, or Basic User privileges.
- Created – the date and time the user was created.
- Last Login – the last day and time the user logged into CloudCheckr.
- Activated – whether the user has activated their CloudCheckr login. If no, you will also see a link to retrieve their activation URL.
From this page you can either click the Create New User button to add an additional user, click the Accounts List button to be taken back to your Account page, or click on the email address of an already-created user to edit their permissions.
There is also a CSV export button on this page which will export you full list of users.
Create New User
Step 1: To add a new user, select the ‘Create New User’ button on the users landing page.
Step 2: This will open the user creation page. Begin by adding the email address of the user you wish to give permissions.
Step 3: Then select the role you wish to make this user. There are three options:
- Basic User – users with this permission CANNOT add, edit or delete accounts.
- User – users with this permission CAN add new accounts, as well as delete those that they have access to.
- Administrator – users with this permission have full permissions to view/add/delete all accounts. They also have the ability to manage all users within their CloudCheckr account.
NOTE: By default, Administrator users will have visibility into ALL accounts added to CloudCheckr. Basic Users and Users must be given explicit access to accounts. This helps prevent them from accidentally being given access to accounts they shouldn’t see.
Step 4: Next, decide which accounts the user should have access to and which reports and cost types they should see by selecting the appropriate checkboxes that coincide with your Accounts.
The following permissions are currently available:
- Access – choose whether the user can access this account. This option grants them access to all non-Cost reports. NOTE: If the user has “User’ access they will be able to delete this account.
- See Cost Reports – choose whether the user can access all reports under the Cost menu.
- See Blended Costs – select this option if you would also like the user to see Blended costs within the Detailed Billing reports.
- See Unblended Costs – select this option if you would like this user to be able to see Unblended costs.
- See List Costs – select this option if you would like the user to see List costs.
- See Resource Utilization Reports – this allows the user to see all the reports within the Resource Utilization grouping, including Heat Maps and Details Reports.
- See Trending Reports – select this option if you would like the user to see all of the Trending Reports including EC2 Instance History.
- See Change Monitoring – this allows the user to see the Change Monitoring report. The user will also be able to flag ignores within the report.
- See Best Practices – this allows the user to see the Best Practices report. They will also be able to ignore checks and details within the report.
You can click the Full Access checkbox to quickly provide full access to all reports across all accounts.
Step 5: Once you have decided on the proper permissions for the user, click the Create button.
Once you click the Create button, an activation email will be delivered to that email address. The user must activate their account, at which point they will establish their password. If, for any reason the user did not receive their activation email you can resend the email from the Edit User page, or, you can retrieve the activation link from the main list of Users.
Step 1: To edit a user, click on their email address while viewing the user list.
Step 2: Decide which action you would like to take. This menu will allow you to:
- Change the accounts they can access
- Change their permissions levels
- Resend their activation email
- Copy the User – this allows you to create a new user with the same access permissions as the user being copied.
- Delete the user
Step 3: Once you’re finished your changes, click the ‘update’ button.
NOTE: User deletion cannot be reversed. If you need to grant access to a user that was deleted you will need to create a new user.
CloudCheckr users can also be managed using the Admin-Level API. For more information, please see: http://support.cloudcheckr.com/cloudcheckr-api-userguide/cloudcheckr-admin-api-reference-guide/