Infrastructure Support Access Roles

To provide the best support experience, it is helpful to provide access for the DataForge team to the infrastructure services supporting DataForge in either AWS or Azure. Please follow the instructions below to give access using the access roles defined by DataForge.  If unsure of which account to provide access to or for questions on this process, either reach out to the DataForge team or submit a support request.

These roles can also be used internally to assign access to other team members assisting in the configuration and monitoring of DataForge.

Roles Available

Role Type Description Role Nomenclature
Read Limited Read-only access to DataForge Resources <Environment>-read-only-group-<Client>
Read-Write Limited Write and Read access to DataForge Resources <Environment>-read-write-group-<Client>
Billing Access to billing information <Environment>-billing-group-<Client>

 

Roles are auto-created by DataForge and need to be designated for each DataForge environment.  Users can have multiple roles or access policies assigned to them.

AWS Steps to Give Access:

Access is granted by adding a user to a user group in IAM.

A User group can also be assigned when the user account is initially added (step 2).  If assigned when creating the user, skip steps 3-7 below as they are redundant.

  1. Navigate to the IAM service within AWS
  2. Open the Users tab and add the new account user
  3. Open the User Groups tab
  4. Search for the groups using the nomenclature from the Roles table above
  5. Open the group you want to assign users access to
  6. Use the Add Users option to search for an existing user 
  7. Check the box next to the user account and use the Add Users button again to confirm

Azure Steps to Give Access:

Requires access to be able to add a user and assign them a role.  Access is resource group based and is granted by adding a user to one of the roles listed above.

  1. Navigate to the Users service within Azure
  2. Use the New User option and follow the prompts to create a new account
  3. Open the Resource Group you want to change access to (Resource groups named like <Environment>-ResourceGroup-<Client>)
  4. Open the Access control (IAM) tab
  5. Use the + Add button to add a new role assignment
  6. Select the role you want to assign access then select the member(s) and assign

IP Whitelisting

If IP whitelisting is necessary while providing our support team with access, please open a request with the DataForge support team to receive the correct IP address.

 

Updated

Was this article helpful?

0 out of 0 found this helpful