Skip to main content

Manage groups

Contributors

Manage your tenant groups as needed to view, edit, or duplicate a group, and more.

Before you begin

View or edit group

You can view and edit the basic information and details for each group.

Steps
  1. Select ACCESS MANAGEMENT > Groups.

  2. Review the information provided on the Groups page, which lists basic information for all local and federated groups for this tenant account.

    If the tenant account has the Use grid federation connection permission and you are viewing groups on the tenant's source grid:

    • A banner message indicates that if you edit or remove a group, your changes will not be synced to the other grid.

    • As needed, a banner message indicates if groups were not cloned to the tenant on the destination grid. You can retry a group clone that failed.

  3. If you want to change the group's name:

    1. Select the checkbox for the group.

    2. Select Actions > Edit group name.

    3. Enter the new name.

    4. Select Save changes.

  4. If you want to view more details or make additional edits, do either of the following:

    • Select the group name.

    • Select the checkbox for the group, and select Actions > View group details.

  5. Review the Overview section, which shows the following information for each group:

    • Display name

    • Unique name

    • Type

    • Access mode

    • Permissions

    • S3 Policy

    • Number of users in this group

    • Additional fields if the tenant account has the Use grid federation connection permission and you are viewing the group on the tenant's source grid:

      • Cloning status, either Success or Failure

      • A blue banner indicating that if you edit or delete this group, your changes will not be synced to the other grid.

  6. Edit group settings as needed. See Create groups for an S3 tenant and Create groups for a Swift tenant for details about what to enter.

    1. In the Overview section, change the display name by selecting the name or the edit icon Edit icon.

    2. On the Group permissions tab, update the permissions, and select Save changes.

    3. On the Group policy tab, make any changes, and select Save changes.

      • If you are editing an S3 group, optionally select a different S3 group policy or enter the JSON string for a custom policy, as required.

      • If you are editing a Swift group, optionally select or clear the Swift Administrator checkbox.

  7. To add one or more existing local users to the group:

    1. Select the Users tab.

      Manage users
    2. Select Add users.

    3. Select the existing users you want to add, and select Add users.

      A success message appears in the upper right.

  8. To remove local users from the group:

    1. Select the Users tab.

    2. Select Remove users.

    3. Select the users you want to remove, and select Remove users.

      A success message appears in the upper right.

  9. Confirm that you selected Save changes for each section you changed.

Duplicate group

You can duplicate an existing group to create new groups more quickly.

Note If your tenant account has the Use grid federation connection permission and you duplicate a group from the tenant's source grid, the duplicated group will be cloned to the tenant's destination grid.
Steps
  1. Select ACCESS MANAGEMENT > Groups.

  2. Select the checkbox for the group you want to duplicate.

  3. Select Actions > Duplicate group.

  4. See Create groups for an S3 tenant or Create groups for a Swift tenant for details about what to enter.

  5. Select Create group.

Retry group clone

To retry a clone that failed:

  1. Select each group that indicates (Cloning failed) below the group name.

  2. Select Actions > Clone groups.

  3. View the status of the clone operation from the details page of each group you're cloning.

For additional information, see Clone tenant groups and users.

Delete one or more groups

You can delete one or more groups. Any users who belong only to a group that is deleted will no longer be able to sign in to the Tenant Manager or use the tenant account.

Note If your tenant account has the Use grid federation connection permission and you delete a group, StorageGRID will not delete the corresponding group on the other grid. If you need to keep this information in sync, you must delete the same group from both grids.
Steps
  1. Select ACCESS MANAGEMENT > Groups.

  2. Select the checkbox for each group you want to delete.

  3. Select Actions > Delete group or Actions > Delete groups.

    A confirmation dialog box appears.

  4. Select Delete group or Delete groups.