MarketplaceCommunityDEENDEENProductsCore ServicesRoadmapRelease NotesService descriptionCertifications and attestationsPrivate CloudManaged ServicesBenefitsSecurity/DSGVOSustainabilityOpenStackMarket leaderPricesPricing modelsComputing & ContainersStorageNetworkDatabase & AnalysisSecurityManagement & ApplicationsPrice calculatorSolutionsIndustriesHealthcarePublic SectorScience and researchAutomotiveMedia and broadcastingRetailUse CasesArtificial intelligenceHigh Performance ComputingBig data and analyticsInternet of ThingsDisaster RecoveryData StorageTurnkey solutionsTelekom cloud solutionsPartner cloud solutionsSwiss Open Telekom CloudReferencesPartnerCIRCLE PartnerTECH PartnerBecome a partnerAcademyTraining & certificationsEssentials trainingFundamentals training coursePractitioner online self-trainingArchitect training courseCertificationsCommunityCommunity blogsCommunity eventsLibraryStudies and whitepaperWebinarsBusiness NavigatorMarketplaceSupportSupport from expertsAI chatbotShared ResponsibilityGuidelines for Security Testing (Penetration Tests)Mobile AppHelp toolsFirst stepsTutorialStatus DashboardFAQTechnical documentationNewsBlogFairs & eventsTrade pressPress inquiriesMarketplaceCommunity

0800 3304477 24 hours a day, seven days a week

Write an E-mail 

Book now and claim starting credit of EUR 250
ProductsCore ServicesPrivate CloudManaged ServicesBenefitsPricesPricing modelsPrice calculatorSolutionsIndustriesUse CasesTurnkey solutionsSwiss Open Telekom CloudReferencesPartnerCIRCLE PartnerTECH PartnerBecome a partnerAcademyTraining & certificationsCommunityLibraryBusiness NavigatorMarketplaceSupportSupport from expertsHelp toolsTechnical documentationNewsBlogFairs & eventsTrade pressPress inquiries
  • 0800 330447724 hours a day, seven days a week
  • Write an E-mail 
Book now and claim starting credit of EUR 250

IAM fine-grained Policies for CBR available in DE

The Cloud Backup & Recovery Service (CBR) supports the assignment of granular access permissions at "action level" via the Identity & Access Management Service (IAM). This allows you to create permissions for individual actions on the CBR service. You could e.g. prevent users from deleting backups or vaults by not granting this permission to them. Using fine-grained policies will increase your security level, as you can define user access rights to only those that they really need.

Via the "Custom Policy Designer" you can now easily configure these fine-grained policies. This is available to you via the IAM Service (Tab: "Permissions", via "Create Custom Policy"). You can select from 45 individual actions. These actions can not only be granted, but also explicitly prohibited. This helps you to avoid users accidentally gaining access to a specific functionality, as any explicit deny configured will definitely prevent access to the functionality, even if there is another rule configured that would normally allow the corresponding permission.

This function level authorization can be linked to further conditional parameters that must be met before the user is allowed to perform the corresponding action. For example, permissions can be bound to time periods. This allows you to issue authorizations only for certain periods of time that automatically will expire.

Below you will find a short overview of the update:

Permissions can

  1. be set up on action level (45 individual actions in total)
  2. be allowed or explicitly prohibited
  3. now also be linked to conditions

Please be advised that IAM fine-grained policies are currently available for DE only. Feel free to refer to the Documentation for more information or check our Community Blog for this release.

Back to overview Release Notes 
 

Do you have questions?

We answer your questions about testing, booking and use – free of charge and individually. Try it! 
Hotline: 24 hours a day, 7 days a week
0800 3304477 from Germany / 00800 33044770 from abroad

Write an E-mail

The Open Telekom Cloud Community

This is where users, developers and product owners meet to help each other, share knowledge and discuss.

Discover now

Free expert hotline

Our certified cloud experts provide you with personal service free of charge.

 0800 3304477 (from Germany)

 +800 33044770 (from abroad)

 24 hours a day, seven days a week

Write an E-Mail

Our customer service is available free of charge via E-Mail

Write an E-Mail

AIssistant Cloudia

Our AI-powered search helps with your cloud needs.