IAM (Identity and Access Management)

An Enterprise-level Identity Authentication and Access Permissions Management Service

IAM is a service that authenticates Samsung Cloud Platform users and limits their access to only certain sets of products/services in a project through the ermissiongranting process. A project manager can manage users, authorization groups, policies and roles, and a dashboard provides insights on permission events within a project and helps take action.

Overview

  • Strong User Authentication

    When accessing the console or API, Multi-Factor Authentication or access key authentication is required for users. In addition, restricting access to projects based on IP addresses helps prevent unauthorized access.

  • Simplified Permission Management

    IAM maps users to groups and roles by project type, thereby limiting user access to the minimum level needed to perform specific tasks. An IAM manager manages a userdefined policy connected to the permission group of a project and grants permissions.

  • Fine-grained Access Control Policy

    IAM creates a fine-grained access control policy for controls/action/resource type and authentication method/IP. By applying the least privilege policy and providing userspecific access to cloud resources, IAM limits access by user type.

  • Centralized Security Management

    An admin delegates users with permissions to resources and the IAM platform offers a dashboard to centrally manage security and permissions. This makes it easier for the
    admin to manage the security of complex organization structures, hundreds of task groups and dozens of projects.

01

04

Service Architecture

User → Login → Samsung Cloud Platform ← Admin → Permission → User Group
    Samsung Cloud Platform
  • Authenticatoin, Authorization
  • Project A : Policy, Group, Role, Resources
  • Project B : Policy, Group, Role, Resources

Key Features

  • Sign-up and security credential

    - Sign up through additional authentication and enable MFA during login
    - Block unauthorized access attempts based on authentication key and access control

  • Permissions management by group

    - Set up a project-based user authorization group and assign policies
    - Simplified management with user mapping by authorization group and policy mapping

  • Access control policy

    - Detailed management of job types by product and access rights by individual resources
    - Policy-based access control, access control by applying authentication

  • Create and switch roles

    - Configure role principals for project and SRN (SCP Resource Number)
    - Enhance security by assigning temporary credential through role switching

Pricing

    • Billing
    • Free of charge
Let’s talk

Whether you’re looking for a specific business solution or just need some questions answered, we’re here to help

Get in Touch
Share