Skip to content

Accounts / Users

Overview

Accounts provide the most granular level of resource ownership and user permissions within a domain. For example, instances are created and owned by an Account and count towards resources consumed for that Account. An Account is a container that can contain multiple users. Each user in an Account can see other users in that same Account but not users in other accounts. Each User in an Account also inherits the permissions of the Account itself.

It is possible to have multiple accounts per Domain, typically that have some logical relationship between them. Domains can have multiple sub-domains to provide delegation of access. In the example of a managed service provider (MSP), the MSP could create sub-domains for each of their customers. An Account that needs to be added to a specific Domain will have that Domain specified during Account Creation by the MSP.

Users are linked to an Account and provides access to resources within an Account. While most accounts will have a single user, multiple users can be added. There is no isolation between users in an Account, but users are isolated from users in other accounts in the same Domain. Usernames must be unique to a specific Domain, but the same Username can be used in separate Domains including sub-domains.

Logging into OpenCloud

When logging in to OpenCloud, the Domain and/or SubDomain must be specified on the OpenCloud login page to provide access for the customer Account. If the Customer is accessing a sub-domain Account, the full path must be provided (e.g., parent-domain/sub-domain). An example of this Domain path is shown below:

Subdomain

An initial Account & User will be provided by US Signal upon completion of the customer domain. There will be one "Cloud Domain Admin" Account to access the Domain. Additional sub-domains, accounts, and users can be created by the customer if required.

While accounts and users usually have the same name, accounts with multiple users must use their username to login to OpenCloud.

Accounts

View Account

  1. Select Accounts from the left navigation menu.
  2. Select the Account Name that should be viewed.
  3. The left information pane displays helpful information about the Account such as the domain, role, and status.
  4. The right information pane contains further details about the Account, including resource limits, Account-specific settings, and event logs.

Add Account

  1. First, an Account needs to have Domain Admin Privileges to add any additional accounts.
  2. From the main OpenCloud menu, select Accounts from the left navigation menu.
  3. Select Add Account at the top of the screen and fill out the following items:
Field Required or Optional
Role Required for Account Creation
Username Required for Account Creation
Password Required for Account Creation
Email Required for Account Creation
First and Last Name Required for Account Creation
Domain Required for Account Creation
Account Name Optional. Account Name can be the same as the Username
TimeZone Optional. Select the local timezone for the Account
  1. Please be aware that customers will only be allowed to add new accounts to their domains and sub-domains. If no separate Account Name is specified, the Username will be the Account name as well.

Delete Account

Danger

BE AWARE THAT DELETING AN ACCOUNT DELETES ALL INSTANCES AND USERS ASSOCIATED WITH THE ACCOUNT. PROCEED WITH CAUTION.

  1. Select Accounts from the left navigation menu.
  2. Select the Account Name that should be Deleted.
  3. Select the red Delete Account button on the far right hand side of the Account functions menu.
  4. A dialog box will come up asking for confirmation that the Account should be deleted. Click OK to proceed.
  5. All resources within the Account and all users associated with this Account will be deleted, so use with caution. US Signal cannot retrieve accounts that are deleted or retrieve Instances or Volumes that are deleted along with an Account.

Change Account

If an Account created by a customer requires a role change, the default account that was provided (Cloud Domain Admin) can modify the role. The account name can also be changed.

  1. Select Accounts from the left navigation menu.
  2. Select the Account that should be changed
  3. Inside the Account, select the Edit Account button.
  4. Change to the desired role and/or account name.

Available Roles

The following Roles are available to be assigned to Accounts.

Role Name Description
Cloud Domain Admin This is the default permission scheme on the account
Cloud Admin User Role that does not have the ability to create/modify/delete Accounts and Users/create/modify/delete self-provisioned networks
Cloud Support User Role that can start/stop/restart VMs and attach ISOs Only
Cloud Read-Only User Role that has Read-Only Access

Account Information

OpenCloud Resources resources are assigned to Accounts. An Account can have many Users under it. The key concept is that permissions are applied at the account level. So all users under that account will inherit those permissions.

View Resource Limits

  1. Select Accounts from the left navigation menu.
  2. Select the Account Name to enter into the Account details.
  3. Select the Limits tab to see the current Account Limits as well as the amount currently in use.

Resource Limit value of -1 is unlimited

Change Resource Limits

  1. Select Accounts from the left navigation menu.
  2. Select the Account Name that should have Resource Limits changed.
  3. Select Configure Limits from the right side menu.
  4. The following Resource Limits are configurable on an Account:
Resource Limit Definition
Maximum User Instances The number of Instances, or VMs, that an Account can have running at one time.
Maximum Public IPs The number of Public IPs that an Account can have.
Maximum Volumes The number of Volumes, or disks, that an Account can have active.
Maximum Snapshots The number of Instance and Volume Snapshots that the Account can make and control.
Maximum Templates The number of Instance creation Templates that the Account can create and own.
Maximum Networks The number of Networks, Shared or otherwise, that the Account can own.
Maximum VPCs The number of VPCs, or Virtual Private Connections, that an Account can own.
Maximum CPU Cores The maximum amount of CPU Cores that the Account can use for Instances.
Maximum Memory in MB The maximum amount of RAM that that an Account can use for Instances.
Maximum Primary Storage The maximum amount of Primary Storage that the Domain can assign to Instances. (Instance Volumes and Instance snapshots)
Maximum Secondary Storage The maximum amount of Secondary Storage that the Domain can assign to Instances. (Templates, ISO, Volume Images, and Volume Snapshots)

Resource Limit value of -1 is unlimited

The Account provided as part of your order has unlimited resources set by default. MSP Customers may wish to restrict resources for other accounts/sub-domains. The account with Cloud Domain Admin that will be needed to add more Resources to each specific Account.

Disable/Enable Account

A disabled Account cannot perform any actions in the OpenCloud platform. The instances associated with that Account will be immediately powered down. Customers perform this action at their own risk.

  1. Select Accounts from the left navigation menu.
  2. Select the Account Name that should be Disabled.
  3. Inside an Account, select the Disable Account button on the Account functions menu in the upper right hand side of the screen.
  4. Once the Account is disabled, the Account status indicator will show the Account as Disabled.
  5. To re-enable the Account, Select the Enable Account button on the Account menu.

Lock/Unlock Account

  1. Select Accounts from the left navigation menu.
  2. Inside the Account:
    1. To lock the Account, click Lock Account button on the Account functions menu in the upper right hand side of the screen.
    2. To unlock the Account, click Unlock Account button in the same area.

Locking an Account prevents associated users from accessing or performing any tasks in OpenCloud. This does not stop any running instances associated with the Account. Accounts must remain in an enabled state to be locked.

Users

List Users

  1. Select Accounts and then click into the Account that owns the username in question.
  2. Once inside the Account, Select View Users at the bottom of the Account information box on the left.
  3. The list of users in this Account will appear. Click into whatever User needs to be edited.
  4. The specific User details screen will appear. The User can then have changes made to it.

Add User

  1. An Account can have multiple users underneath it that share that specific account's roles. Customers should be aware that if they make a new User under an Account that has a Domain Admin role, that new user will also have a Domain Admin role.
  2. Select the Accounts tab on the left hand side of the screen, then click into the Account in question.
  3. Select View Users under the Account information area.
  4. The list of users under this Account will come up. Select Add User at the top in blue.
  5. A new User Configuration screen will come up. Fill out all the information boxes on this screen and then click OK to make the new User.
  6. The new User will be created under the specified Account and then inherit the Account's permissions.

Edit User

  1. Select the Accounts tab on the left hand side of the screen, then click into the Account in question.
  2. Select View Users under the Account information area.
  3. Select the name of the User that should be edited.
  4. Select the Edit button At the top right of the screen.
  5. A new window will open to show the current User details. Change the details as needed and click ok.
  6. The user Account will then update to reflect the new changes.

Delete User

  1. Select the Accounts tab on the left hand side of the screen, then click into the Account that contains the User in question.
  2. Select View Users under the Account information area.
  3. Click into the User that needs to be deleted.
  4. Once inside the User main screen, click on the red Delete User button in the upper right.
  5. A dialog box will appear asking for confirmation that the user should be deleted.
  6. Clicking OK removes the User.

Change Password

  1. Select Accounts from the left-hand panel on the main page.
  2. Click into the Account that contains the user.
  3. Click into the specific user.
  4. Once inside the user screen, Select the Change password button in the upper right.
  5. A new window will open. Fill out the new User password and confirm it. Then click OK.

API Keys

  1. Accounts or Users who will be given access to the API will need API and secret keys generated for them.
  2. Select the Accounts tab on the left hand side of the screen, then click into the Account that contains the User in question.
  3. Select View Users under the Account information area.
  4. Select the name of the User that needs an SSH key.
  5. Once inside the user screen, click on the Generate New API/Secret Keys button in the upper right.
  6. A dialog box will appear asking the customer to confirm that new Secret and API keys will be generated.
  7. Once these are generated, they will be seen at the bottom of the user's page.

Disable/Enable User

  1. Select the Accounts tab on the left hand side of the screen, then click into the Account that contains the User in question.
  2. Select View Users under the Account information area.
  3. Click into the User that needs to be disabled.
  4. Once on the main user page, click on the Disable User button in the upper right menu to disable the user.
  5. Once clicked, a dialog box will appear to confirm that the user should be disabled.
  6. The user will then be disabled after OK is clicked.
  7. To Enable a User, click on the Enable User button.

Disabling a user prevents that specific user from performing any other actions in OpenCloud. Since an Account may have multiple users, this disable only applies to the specific user Account that is targeted