A Group is a collection of users who have similar permissions and are required to perform certain tasks. An example of a group might be a group of users who are frequently expected to modify existing user accounts, for example to update personal details. An Account Admin group could be formed for these users, which could be managed to give the users in it the permissions required to modify other user accounts. This saves time as permissions would not have to be assigned to each user in the group individually.Brinkster Cloud Orchestrator is supplied with 3 default groups, which can be renamed but not edited. Users can be assigned to more than one group when managing a user or group, in which case the permissions from the group with the highest priority are applied.
The default groups are as follows:
- Locked Group - This group contains users who are currently prevented from accessing the platform. This group has the highest priority.
- Admin Group - This group contains users who are the administrators of the platform. They are able to perform any action, and access any resource, regardless of permissions. This group has the second highest priority.
- Everyone Group - This group contains users who are not administrators. By default, members of this group have read-only access to resources, meaning they cannot start, stop, create, delete, or perform other actions on resources. This group has the lowest priority.
This means that if User A is a member of both the Admin and Locked groups, the permissions from the Locked group override those of the Admin group, preventing User A from accessing the platform. Similarly, if User B is a member of both the Admin and Everyone groups, the permissions of the Admin group override those of the Everyone group, giving User B full access to the platform.