Creating a Custom Role at the Subscription Level
Applies to: Kyvos Enterprise Kyvos Cloud (SaaS on AWS) Kyvos AWS Marketplace
Kyvos Azure Marketplace Kyvos GCP Marketplace Kyvos Single Node Installation (Kyvos SNI)
Note
If you are unable to add a role, contact your Azure Account Administrator to do so.
Creating a Custom Role
To create a custom role, perform the following steps.
Log in to the Azure portal.
Navigate to Subscription and click Access Control (IAM) on the navigation bar.
Click Add > Add custom role as shown below.
The Create a Custom Role wizard is displayed.On the Basics tab, enter a unique custom role name.
Click the JSON tab, and then click Edit.
Delete the existing JSON text.
Copy the text from the CustomRole_DeploymentUser.json file, which contains the required permissions, and paste it into the JSON textbox.
Replace the {Subscription_ID} with the respective Subscription Id.
Replace the value of roleName with the Custom role name value provided in Step 4.
Click Save. The JSON automatically assigns the required permissions.
Click on Review + Create. Then click Create. The custom role is created.
Assigning a Custom Role
After you create a custom role on Azure, you will need to attach the role to the user who will be deploying the Kyvos Application.
To assign a Custom Role, perform the following steps.
Go back to the Subscription page and click Access Control (IAM).
Click Add > Add role assignment.
On the Role Assignment pane, enter details as:Role: Search and select the custom role that you created earlier. See the Creating a Custom Role section for more details.
Assign Access To: Select the User, group, or service principal option.
Select: Select the User to which you want to add this role.
Click Next.
On the Review + assign tab, review the role assignment settings.
Click Review + assign to assign the role.
After a few moments, the Custom role is assigned to the user.
Copyright Kyvos, Inc. All rights reserved.