1. Datica Support & Documentation
  2. Help
  3. General Articles

Compliant Kubernetes Service documentation has moved

Please note: You are not reading Kubernetes documentation. If you're looking for Compliant Kubernetes Service documentation, it has moved. Read more here.

Organization Management

Ryan Rich -

An Organization is a group of user accounts, usable across all Datica products. Typically, an organization maps to (and is named after) your company. Organizations are created for you during the provisioning process. It is possible to be a member of multiple organizations.

On The Platform, each environment belongs to a single organization.

Groups

Every user in an organization can belong to any number of groups. Groups, via ACLs, allow their members to access Datica resources and products. You can create and delete groups as you see fit. When a new organization is created an Admins group will be created automatically. Typically, an organization only has a few Admins.

ACLs

Groups are composed of ACLs, currently Datica supports two ACLs, though more are coming:

  • Base Can interact and control any component and product of your environment(s), except they do not have VPN access, and the cannot manage users.
  • VPN Access Can directly interact with your Datica network, runnings jobs, and services (Note: this is only relevant to organizations and environments that have a running VPN).

Managing Your Organization

Organization management tools are located in The Platform Dashboard—find your organization under the “Organizations” section in the main nav on the left hand side of the dashboard.

Adding Members to Your Organization

New members are added to your organization by sending them an invite, from the management tools. Filling out this form will send an email to the specified address, including instructions on how to join the organization. After the invite is sent, it can be revoked at any time until it is accepted. After it is accepted, it will disappear from this table.

Note: The CLI invites send command can also be used to send an invite.

Creating and Deleting Groups

If you want to create a new group that has a different set of ACLs click the Add Group button. If you want to create a group that has access to everything, you check the “Full Access” checkbox. Note: groups with “Full Access” are implictly granted access to manage users in your organization.

add_group-f136056a.png

Name the group, and select the ACLs you want the group to have.

create_group.png

Removing Members, Changing Groups, and Granting Environment Access

This view is visible to all members of groups that have “Full Access”.

In the management tools, there is a list of all members of the organization.

Screen_Shot_2017-09-13_at_5.32.12_PM.png

Click on the Edit button to enter the details view for a member.

Screen_Shot_2017-09-13_at_5.32.26_PM.png

To remove a user from a group, click the X button by the group name.

To add a user to a group, select the group from the dropdown and click Save.

To remove the member from the organization, click the Remove User from Organization button.