Open Telekom Cloud for Business Customers

IAM fine-grained Policies for CBR available in DE

The Cloud Backup & Recovery Service (CBR) supports the assignment of granular access permissions at "action level" via the Identity & Access Management Service (IAM). This allows you to create permissions for individual actions on the CBR service. You could e.g. prevent users from deleting backups or vaults by not granting this permission to them. Using fine-grained policies will increase your security level, as you can define user access rights to only those that they really need.

Via the "Custom Policy Designer" you can now easily configure these fine-grained policies. This is available to you via the IAM Service (Tab: "Permissions", via "Create Custom Policy"). You can select from 45 individual actions. These actions can not only be granted, but also explicitly prohibited. This helps you to avoid users accidentally gaining access to a specific functionality, as any explicit deny configured will definitely prevent access to the functionality, even if there is another rule configured that would normally allow the corresponding permission.

This function level authorization can be linked to further conditional parameters that must be met before the user is allowed to perform the corresponding action. For example, permissions can be bound to time periods. This allows you to issue authorizations only for certain periods of time that automatically will expire.

Below you will find a short overview of the update:

Permissions can

  1. be set up on action level (45 individual actions in total)
  2. be allowed or explicitly prohibited
  3. now also be linked to conditions

Please be advised that IAM fine-grained policies are currently available for DE only. Feel free to refer to the Documentation for more information or check our Community Blog for this release.

 

Do you have questions?

We answer your questions about testing, booking and use – free of charge and individually. Try it! 
Hotline: 24 hours a day, 7 days a week
0800 3304477 from Germany / 00800 33044770 from abroad

  • Communities

    The Open Telekom Cloud Community

    This is where users, developers and product owners meet to help each other, share knowledge and discuss.

    Discover now

  • Telefon

    Free expert hotline

    Our certified cloud experts provide you with personal service free of charge.

     0800 3304477 (from Germany)

     
    +800 33044770 (from abroad)

     
    24 hours a day, seven days a week

  • E-Mail

    Our customer service is available free of charge via E-Mail

    Write an E-Mail