User and role management

User and role management lets you give and control access to Cloud Observability, helping your teams stay efficient and secure.

Overview

Cloud Observability’s user and role management is flexible, letting you integrate with tools such as Microsoft Entra ID, Okta, or OneLogin. You can automate creating users and assigning roles, or handle things in bulk with Cloud Observability’s API or Terraform. By assigning roles and permissions, teams can access the right resources while protecting sensitive information.

Workflow

To help you integrate with your existing systems, Cloud Observability offers several ways to manage users and roles. The table below outlines the options for assigning roles and authenticating, creating, and deleting users.

If you’re not sure where to start, see Plan your workflow to learn about four common setups.

Action	How to do it
Authenticating users	Use single sign-on (SSO) or manually invite users in the Cloud Observability UI.
Creating users	If you're using SSO, automate user creation with Just-in-Time (JIT) provisioning or Okta and System for Cross-domain Identity Management (SCIM). You can also create users in bulk with the Cloud Observability API. If you're not using SSO, create users by manually inviting them in the Cloud Observability UI.
Assigning roles	If you're using SSO: Auto-assign a default role to new users with JIT provisioning or Okta and SCIM. Assign roles to SAML attributes using SAML group mapping. Assign roles in bulk with Terraform. If you're not using SSO, assign roles in the Cloud Observability UI or with Terraform.
Deleting users	Use the Cloud Observability API or Cloud Observability UI.

Benefits

Cloud Observability’s user and role management features have several benefits:

Flexibility

Integrate with your tools – for example, Microsoft Entra ID, Okta, or OneLogin – to manage users and roles. To give teams the access they need, use Cloud Observability’s standard roles or create your own custom roles.

Security

Control user access with role-based access control (RBAC) and let Identity Providers (IdPs) authenticate users through SSO.

Efficiency

Manage users and roles at scale with JIT provisioning, the Cloud Observability API, Okta and SCIM, or Terraform.

What to explore next

To learn more about setting up user and role management, see:

• Plan your workflow
• Manage users
• Manage roles

See also

Roles and permissions reference

Set up JIT provisioning

Set up SSO

Updated Oct 18, 2024