IAM Features

When setting up access for additional users, there are certain nuances to consider. Below, we explain them in more detail.

Access Combinations

Some parts of the control panel are closely linked with specific types of services (for example, SSH keys are tied to cloud servers).

When the account owner grants access to a section that has related functionality, the user will automatically receive the same level of access to those related features.

All access combinations are listed below:

Servers:

• Cloud Servers
• SSH Keys
• Images
• Private Networks
• Firewall
• Public IPs

Databases:

• Databases
• Private Networks
• Firewall
• Public IPs

Balancers:

• Load Balancers
• Private Networks
• Firewall
• Public IPs

Networks:

• Private Networks
• Firewall
• Public IPs

Domains:

• Domains
• Domain Administrators

Access to the Finances section is always granted for the entire account. Even if a user is limited to specific projects, the Billing section will show all account services.

Available to All Users

Each additional user can:

• Enable or disable dark mode
• Access the API section

Any token issued by an additional user will have the same permissions as the user themselves. 

Available to Account Owner Only

The following sections and options are always available only to the account owner:

• Notifications
• Users
• Feedback
• News
• Referral Program
• Project Management (creating, deleting projects, and moving services between projects)

"Read Only" Access

It’s important to note that the "Read Only" permission allows a user to see all information in a section, including passwords.

For example, a user with "Read Only" access to the Databases and Cloud Servers sections won’t be able to create or delete servers or databases in the panel, but they can still retrieve access credentials and connect via standard methods (e.g., SSH).

Creating Services Without Access to Finances

Users with "Management" access to a specific section can create new services in that section, even if they cannot access the Finances section or view the balance.

If the account balance is sufficient, the service will be successfully created.

Access to the Support Section

You can grant an additional user access to the Support section. Available access levels:

• Management – User can view and create tickets.
• Read Only – User can view open and closed tickets.
• No Access – User cannot access the Support section.

A user with "Read Only" or "Management" access will see all tickets (open and closed) created by any users in the account, including those by the account owner.

When an additional user contacts support, we take into account their permissions for the related section:

• Management – The support team can perform all actions available except deletions, which must be done by the user themselves.
• Read Only – The support team cannot take action without approval from the account owner. In this case, additional verification or forwarding the request to the account owner will be required.
• No Access – No service information will be disclosed. Resolving the issue will require user verification as the account owner or direct contact from the owner.

Restrictions

• Transferring a server between accounts – Only the owner can make this request.
• Deletion and restoration from backups – Must be performed by the user/owner themselves.
• Configuring additional users – Available only to the account owner.
• Access issues – If an additional user has trouble accessing the account or certain sections, they must contact the account owner directly to resolve the issue.