Roles

In CloudCasa, roles define permissions, such as starting a backup job for Kubernetes clusters and deleting storage accounts. Every user must be associated with at least one role.

From the menu bar, go to Configuration > Roles in the User Management section.

The built-in roles

There are two built-in roles that are avaiable in CloudCasa by default: ADMIN and USER.

See also

In addition to the built-in roles, you can create and use custom roles with specific permissions. For more information, see Adding custom roles.

Their permissions are pre-defined as follows:

Roles and permissions

ADMIN

USER

Custom roles

Dashboard

Protection

Security

Configuration

(Partial)

(Optional)

Activities

(Optional)

Alerts

(Optional)

Roles and permissions: Configuration for Protection

ADMIN

USER

Custom roles

Policies

(Optional)

App Hooks

(Optional)

My Storage

(Read only)

(Optional)

Roles and permissions: Configuration for General

ADMIN

USER

Custom roles

Settings

(Optional)

Clusters

(Optional)

Cloud Accounts

(Optional)

Billing & Payments

● *

Service Plans

(Optional)

* The Billing & Payments page is only available for the user who signed up to CloudCasa for the first time.

Roles and permissions: Configuration for User Management

ADMIN

USER

Custom roles

Users

(Optional)

User Groups

(Optional)

Roles

(Optional)

Invitations

(Optional)

API Keys

(Optional)

Tip

Some features such as API Keys are not available in CloudCasa Free Edition.

Adding custom roles

In addition to the built-in roles, you can create custom roles with specific permissions and associate users with these custom roles.

In the Roles page, click Add role + to open the Add role pane.

Enter the name. You can also add description which appears in the role list.

Select permissions:

Permission type

Actions to permit

Alerts

Control

API Keys

Create, Read, ReadWrite

Cloud Accounts

Create, Read, ReadWrite, Scan

Jobs

Control

Kubernetes App Hooks

Create, Read, ReadWrite

Kubernetes Backup Definitions

Create, Read, ReadWrite

Kubernetes Clusters

Backup, Control, Create, Read, ReadWrite, Restore, Scan

Kubernetes Namespaces

Read

Kubernetes Restore Definitions

Create, Read, ReadWrite

My Storage

Create, Read, ReadWrite

Policies

Create, Read, ReadWrite

Recovery Points

Control

Roles

Create, Read, ReadWrite

Security Scan Reports

Control

Security Scans

Create, Read, ReadWrite

User Groups

Create, Read, ReadWrite

Users

Create, Read, ReadWrite

Click Save. Ensure that you can see the new custom role in the role list.

Tip

Every time you assign permissions to a user, always check their user groups, which is a group of roles, in addition to individual roles. For example, assume that you have a user “Momoko” and associate her with the USER role. If she is also associated with a user group which includes the ADMIN role, she has all permissions that the ADMIN role has too. For details about user groups, see User Groups.