cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Policy replacing "View and manage users and groups (Permissions)"

Hello respected community memembers,

in Dynatrace classic permission we can assign to groups:

  • View and manage users and groups (Permissions)

I' m looking for a way to set up a IAM policy That will split the permission as:

 

  • Policy 1: ALLOW View Users and Groups
  • Policy 2: ALLOW Manage Users and Groups

Is this possible?

 

3 REPLIES 3

DanielS
DynaMight Guru
DynaMight Guru

Hi, according to this data, you only have the option to give View and Manage User and Groups permissions, not only view.

https://docs.dynatrace.com/docs/shortlink/account-management-permissions#permissions-table 

DanielS_0-1714413844018.png

 

The true delight is in the finding out rather than in the knowing.

My final scope would be to edit groups and assign permission to it, without ever editing the users (or blocking the ability of manually adding users from Dynatrace). That is why I'm looking into the subjects

DanielS
DynaMight Guru
DynaMight Guru

But If you do it by API, you can choose the token scope for read or write access only:

DanielS_0-1714418657708.png

 

The true delight is in the finding out rather than in the knowing.

Featured Posts