Identity & Access Management

This page describes Identity & Access Management (IAM) in Lenses.

IAM controls what users and service accounts can do in Lenses. Permissions flow from principals → groups → roles → policies. If any policy statement matches with effect: deny, access is denied.

Common setup flow

Configure authentication

Pick Basic Auth or SSO/SAML.

Create roles and policies

Define actions, resources, and allow/deny.

Create groups and assign roles

Attach one or more roles to each group.

Add users and service accounts to groups

Membership drives permissions.

Validate access

Topic

Overview

Description

Core concepts and policy evaluation

Topic

Authentication

Description

Basic Auth, SSO/SAML, and admin accounts

Topic

Users

Description

Create users and manage group membership

Topic

Service Accounts

Description

Programmatic access via service account tokens

Topic

Groups

Description

Collect principals and grant roles

Topic

Roles

Description

Create roles and attach policies

Topic

IAM Reference

Description

All actions and resource formats

Topic

Example Policies

Description

Ready-to-use role templates

PreviousLenses Resource Names (LRNs)NextOverview

Last updated 3 months ago

Was this helpful?

Good evening

hashtagCommon setup flow

hashtagConfigure authentication

hashtagCreate roles and policies

hashtagCreate groups and assign roles

hashtagAdd users and service accounts to groups

hashtagValidate access

Common setup flow

Configure authentication

Create roles and policies

Create groups and assign roles

Add users and service accounts to groups

Validate access