Manage users, roles, permissions to each project easily
Add team members to join SpaceONE and manage your infrastructure. Assign roles to SpaceONE users in your domain.
Try Demo
External Authentications
Authenticate users by identity service
Choose various authentication options. SpaceONE supports from local ID / password to external identity services including Google OAuth2, Active Directory, Keycloak.
RBAC
Control access permissions by roles and policies
Apply access policies to manage user roles. Fine-tune access permissions with SpaceONE RBAC(Role-Based Access Control) system.
Want to learn more about IAM?
SpaceONE supports external authentication options including Google OAuth2, Active Directory, and Keycloak, and also provides a local authentication option based on ID and password.
You can integrate other external identity services by developing your own custom plugins.
SpaceONE's managed RBAC policy provides 4 kinds of roles to assign.
| Domain Admin | Administrator permission controlling full system |
|---|---|
| Domain Viewer | Viewer permission viewing all resource data |
| Project Manager | Manager permission managing members and resources, limited in the certain project assigned |
| Project Viewer | Viewer permission viewing resource data, limited in the certain project assigned |
You can create or change custom policies by yourself in addition to the managed policies provided by default. Detailed permissions can be set for specific features such as viewer/admin permission in per-page level, API access permission, and scope of per-project level.
Not finding what you're looking for?
Visit the Docs for more
