openstack/openstack-manuals
Code Issues Proposed changes

Admin user guide edits

Browse Source 
Edits to the Dashboard: Manage Users and Projects section
Edits to the Manage Project Security section
All of this hopefully brings these docs in line w/ the Icehouse GUI
Closes-bug: 1194229

Reviewer comments added and niceness fixes as well.

Change-Id: Ib7ffa484eb817dbda0c046931aedea24e14404cc
This commit is contained in:
Karin Levenstein
2014-06-06 13:17:59 -05:00
parent 3f34d95148
commit a38787ed1f
3 changed files with 257 additions and 261 deletions
Download Patch File Download Diff File Expand all files Collapse all files

283
doc/user-guide-admin/section_dashboard_admin_manage_projects_security.xml
View File

@@ -5,15 +5,16 @@
xml:id="dashboard_manage_projects_security"> xml:id="dashboard_manage_projects_security">
<?dbhtml stop-chunking?> <?dbhtml stop-chunking?>
<title>Manage project security</title> <title>Manage project security</title>
<para>Security groups are sets of IP filter rules that define <para>Security groups are sets of IP filter rules that define networking
networking access and are applied to all project instances. access and are applied to all instances within a project. Group rules
Group rules are project specific; project members can edit are project-specific; project members can edit the default rules for
the default rules for their group and add new rule sets.</para> their group and add new rule sets.</para>
<para>All projects have a default security <para>All projects have a default security group that is applied to any
group that is applied to any instance that has no other instance that has no other defined security group. When unmodified, the
defined security group. Unless you change the default, this default security group denies all incoming traffic and allows only
security group denies all incoming traffic and allows only outgoing traffic to your instance. A common use case is to edit the
outgoing traffic to your instance.</para> default security group to permit SSH access and ICMP access, so that
users can log into and ping instances.</para>
<note> <note>
<para>For information about updating global controls on the <para>For information about updating global controls on the
command line, see <xref command line, see <xref
@@ -23,15 +24,15 @@
<title>Create a security group</title> <title>Create a security group</title>
<procedure> <procedure>
<step> <step>
<para>Log in to the dashboard as a project <para>Log in to the dashboard as a project member.</para>
member.</para>
</step> </step>
<step> <step>
<para>On the <guilabel>Project</guilabel> tab, select <para>Select a project from the drop-down menu at the top of the screen.</para>
the appropriate project from the <guimenu>CURRENT </step>
PROJECT</guimenu> drop-down list, and click <step>
the <guimenuitem>Access &amp; <para>On the <guilabel>Project</guilabel> tab, click the
Security</guimenuitem> category.</para> <guimenuitem>Access &amp; Security</guimenuitem>
category.</para>
</step> </step>
<step> <step>
<para>On the <guilabel>Security Groups</guilabel> tab, <para>On the <guilabel>Security Groups</guilabel> tab,
@@ -51,37 +52,37 @@
<title>Add a security group rule</title> <title>Add a security group rule</title>
<procedure> <procedure>
<step> <step>
<para>Log in to the dashboard as a project <para>Log in to the dashboard as a project member.</para>
member.</para>
</step> </step>
<step> <step>
<para>On the <guilabel>Project</guilabel> tab, select <para>Select a project from the drop-down menu at the top of the
the appropriate project from the <guimenu>CURRENT screen.</para>
PROJECT</guimenu> drop-down list, and click
the <guimenuitem>Access &amp;
Security</guimenuitem> category.</para>
</step> </step>
<step> <step>
<para>On the <guilabel>Security Groups</guilabel> tab, <para>On the <guilabel>Project</guilabel> tab, click the
click <guibutton>Edit rules</guibutton> for the <guimenuitem>Access &amp; Security</guimenuitem>
appropriate security group.</para> category.</para>
</step> </step>
<step> <step>
<para>To add a rule, click <guibutton>Add <para>On the <guilabel>Security Groups</guilabel> tab, click
Rule</guibutton>. Set the attributes for the rule, <guibutton>Manage rules</guibutton> for the appropriate
and click <guibutton>Add</guibutton>:</para> security group.</para>
</step>
<step>
<para>To add a rule, click <guibutton>Add Rule</guibutton>. Set
the attributes for the rule, and click
<guibutton>Add</guibutton>.</para>
<para>The following attributes can be configured:</para>
<variablelist wordsize="10"> <variablelist wordsize="10">
<!-- this doesn't match the UI --> <varlistentry>
<!-- <varlistentry>
<term>Rule</term> <term>Rule</term>
<listitem> <listitem>
<para>The rule protocol type . <para>The rule protocol type. Valid types are:<itemizedlist>
Valid types are:<itemizedlist>
<listitem> <listitem>
<para><guilabel>Custom TCP <para><guilabel>Custom TCP
Rule</guilabel>.Typically used to Rule</guilabel>.Typically used to
exchange data between systems, and exchange data between systems, and for
for end-user communication.</para> end-user communication.</para>
</listitem> </listitem>
<listitem> <listitem>
<para><guilabel>Custom UDP <para><guilabel>Custom UDP
@@ -93,145 +94,128 @@
<listitem> <listitem>
<para><guilabel>Custom ICMP <para><guilabel>Custom ICMP
Rule</guilabel>. Typically used by Rule</guilabel>. Typically used by
network devices (for example, network devices (for example, routers)
routers) to send error or to send error or monitoring
monitoring messages.</para> messages.</para>
</listitem> </listitem>
<listitem> <listitem>
<para><guilabel>Other <para><guilabel>Other
Protocol</guilabel>. Other protocol Protocol</guilabel>: Enables you to
type (for example, SCTP, which can manually specify another rule protocol,
be used to handle application data if it is not included in the
at the SCTP level). Only available list.</para>
for OpenStack Networking security </listitem>
groups.</para> <listitem>
<para>Other standard IP protocols,
including: All ICMP, All TCP, All UDP,
DNS, HTTP, HTTPS, IMAP, IMAPS, LDAP, MS
SQL, MYSQL, POP3, POP3S, RDP, SMTP,
SMTPS, and SSH.</para>
</listitem> </listitem>
</itemizedlist></para> </itemizedlist></para>
</listitem> </listitem>
</varlistentry> -->
<varlistentry>
<term><guilabel>IP Protocol</guilabel></term>
<listitem>
<para>The IP protocol to which
the rule applies:</para>
<itemizedlist>
<listitem>
<para><guilabel>TCP</guilabel>.Typically
used to exchange data between
systems, and for end-user
communication.</para>
</listitem>
<listitem>
<para><guilabel>UDP</guilabel>.
Typically used to exchange data
between systems, particularly at
the application level.</para>
</listitem>
<listitem>
<para><guilabel>ICMP</guilabel>.
Typically used by network devices,
such as routers, to send error or
monitoring messages.</para>
</listitem>
</itemizedlist>
</listitem>
</varlistentry> </varlistentry>
<!-- not in the GUI --> <varlistentry>
<!--<varlistentry>
<term>Direction</term> <term>Direction</term>
<listitem> <listitem>
<para>For OpenStack Networking. The <para>The direction of network traffic to which the
direction of network traffic to which rule applies: <guilabel>Ingress</guilabel>
the rule applies: (inbound) or <guilabel>Egress</guilabel>
<guilabel>Ingress</guilabel> (outbound). This option is available only when
(inbound) or <guilabel>Custom TCP Rule</guilabel>,
<guilabel>Egress</guilabel> <guilabel>Custom UDP Rule</guilabel>,
(outbound).</para> <guilabel>Custom ICMP Rule</guilabel>,
<guilabel>All ICMP</guilabel>, <guilabel>All
TCP</guilabel>, <guilabel>All
UDP</guilabel>, or <guilabel>Other
Protocol</guilabel> is selected.</para>
</listitem> </listitem>
</varlistentry> --> </varlistentry>
<varlistentry> <varlistentry>
<term><guilabel>Open</guilabel></term> <term>Open Port</term>
<listitem>
<para>The <guilabel>Port</guilabel> or
<guilabel>Port Range</guilabel> to open for
the rule. This option is available only when
<guilabel>Custom TCP Rule</guilabel> or
<guilabel>Custom UDP Rule</guilabel> is
selected.</para>
<itemizedlist>
<listitem> <listitem>
<para>For TCP or UDP rules, the
<guilabel>Port</guilabel> or
<guilabel>Port Range</guilabel> to
open for the rule. Choose to open a
single port or range of ports.</para>
<para>For a range of ports, enter port <para>For a range of ports, enter port
values in the <guilabel>From values in the <guilabel>From
Port</guilabel> and <guilabel>To Port</guilabel> and <guilabel>To
Port</guilabel> fields.</para> Port</guilabel> fields.</para>
</listitem>
<listitem>
<para>For a single port, enter the port <para>For a single port, enter the port
value in the <guilabel>Port</guilabel> value in the <guilabel>Port</guilabel>
field.</para> field.</para>
</listitem> </listitem>
</itemizedlist>
</listitem>
</varlistentry> </varlistentry>
<!-- not in the GUI --> <varlistentry>
<!--<varlistentry>
<term>Type</term> <term>Type</term>
<listitem> <listitem>
<para>For ICMP rules, specifies <para>Specifies the ICMP message that is being
the ICMP message that is being passed. This option is available only when
passed.</para> <guilabel>Custom ICMP Rule</guilabel> is
selected.</para>
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term>Code</term> <term>Code</term>
<listitem> <listitem>
<para>For ICMP rules, specifies <para>For ICMP rules, specifies the ICMP subtype
the ICMP subtype code, which provides code, which provides further information about
further information about the the <guilabel>Type</guilabel> message. This
<guilabel>Type</guilabel> option is available only when <guilabel>Custom
message.</para> ICMP Rule</guilabel> is selected.</para>
</listitem> </listitem>
</varlistentry> </varlistentry>
<varlistentry> <varlistentry>
<term>IP Protocol</term> <term>IP Protocol</term>
<listitem> <listitem>
<para>For OpenStack Networking. For <para>For <guilabel>Other Protocol</guilabel> rules,
<guilabel>Other Protocol</guilabel> specifies the IP protocol to be used for the
rules, specifies the IP protocol to be rule. Specify the protocol as an integer. See
used for the rule. Specify the <link
protocol as an integer. See <link
xlink:href="http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml" xlink:href="http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml"
>http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml</link>.</para> >http://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml</link>.
This option is available only when
<guilabel>Other Protocol</guilabel> is
selected.</para>
</listitem> </listitem>
</varlistentry> --> </varlistentry>
<varlistentry> <varlistentry>
<term><guilabel>Source</guilabel></term> <term>Remote</term>
<listitem> <listitem>
<para>The source of the traffic <para>The source of the traffic
for this rule:</para> for this rule:</para>
<itemizedlist> <itemizedlist>
<listitem> <listitem>
<para><guilabel>CIDR</guilabel> <para><guilabel>CIDR</guilabel> (Classless
(Classless Inter-Domain Routing). Inter-Domain Routing). When selected,
IP address block, which limits access is limited only to IP addresses
access to IPs within the block. within the specified block. When
Enter the CIDR in the selected, enter the CIDR in the
<guilabel>Source</guilabel> <guilabel>CIDR</guilabel> field.</para>
field.</para>
</listitem> </listitem>
<listitem> <listitem>
<para><guilabel>Security <para><guilabel>Security Group</guilabel>.
Group</guilabel>. Source group that When selected, any instance in the
enables any instance in the group selected security group can access any
to access any other group other group instance. When selected,
instance.</para> choose the <guilabel>Security
Group</guilabel> and the <guilabel>Ether
Type</guilabel>, which can be either
<guilabel>IPv4</guilabel> or
<guilabel>IPv6</guilabel>.</para>
</listitem> </listitem>
</itemizedlist> </itemizedlist>
</listitem> </listitem>
</varlistentry> </varlistentry>
<!-- not in gui -->
<!--<varlistentry>
<term>Ether Type</term>
<listitem>
<para>For OpenStack Networking. The
traffic protocol for the rule. Either
<guilabel>IPv4</guilabel> or
<guilabel>IPv6</guilabel>.</para>
</listitem>
</varlistentry> -->
</variablelist> </variablelist>
</step> </step>
</procedure> </procedure>
@@ -240,24 +224,26 @@
<title>Delete a security group rule</title> <title>Delete a security group rule</title>
<procedure> <procedure>
<step> <step>
<para>Log in to the dashboard as a project <para>Log in to the dashboard as a project member.</para>
member.</para>
</step> </step>
<step> <step>
<para>On the <guilabel>Project</guilabel> tab, select <para>Select a project from the drop-down menu at the top of the
the appropriate project from the <guimenu>CURRENT screen.</para>
PROJECT</guimenu> drop-down list, and click
the <guimenuitem>Access &amp;
Security</guimenuitem> category.</para>
</step> </step>
<step> <step>
<para>On the <guilabel>Security Groups</guilabel> tab, <para>On the <guilabel>Project</guilabel> tab, click the
click <guibutton>Edit rules</guibutton> for the <guimenuitem>Access &amp; Security</guimenuitem>
appropriate security group.</para> category.</para>
</step>
<step>
<para>On the <guilabel>Security Groups</guilabel> tab, click
<guibutton>Manage rules</guibutton> for the appropriate
security group.</para>
</step> </step>
<step> <step>
<para>To delete a rule, select the rule and click <para>To delete a rule, select the rule and click
<guibutton>Delete Rule</guibutton>.</para> <guibutton>Delete Rule</guibutton> and confirm that you
want to delete the rule.</para>
</step> </step>
</procedure> </procedure>
</section> </section>
@@ -265,21 +251,22 @@
<title>Delete a security group</title> <title>Delete a security group</title>
<procedure> <procedure>
<step> <step>
<para>Log in to the dashboard as a project <para>Log in to the dashboard as a project member.</para>
member.</para>
</step> </step>
<step> <step>
<para>On the <guilabel>Project</guilabel> tab, select <para>Select a project from the drop-down menu at the top of the
the appropriate project from the <guilabel>CURRENT screen.</para>
PROJECT</guilabel> drop-down list, and click </step>
the <guilabel>Access &amp; Security</guilabel> <step>
<para>On the <guilabel>Project</guilabel> tab, click the
<guimenuitem>Access &amp; Security</guimenuitem>
category.</para> category.</para>
</step> </step>
<step> <step>
<para>On the <guilabel>Security Groups</guilabel> tab, <para>On the <guilabel>Security Groups</guilabel> tab, select
select the appropriate group, and click the appropriate group, and click <guibutton>Delete Security
<guibutton>Delete Security Group</guibutton> and confirm that you want to delete
Group</guibutton>.</para> the group.</para>
</step> </step>
</procedure> </procedure>
</section> </section>

255
doc/user-guide-admin/section_dashboard_admin_manage_projects_users.xml
View File

@@ -5,31 +5,111 @@
xml:id="dashboard_manage_projects_users"> xml:id="dashboard_manage_projects_users">
<?dbhtml stop-chunking?> <?dbhtml stop-chunking?>
<title>Manage projects and users</title> <title>Manage projects and users</title>
<para>As a cloud administrator, you manage both projects and <para>As an OpenStack cloud administrator, you manage both
users. Projects are organizational units in the cloud to which projects and users, which can be managed independently from
you can assign users. Projects are also known as <emphasis each other. Projects, also known as <emphasis role="italic"
role="italic">tenants</emphasis> or <emphasis >tenants</emphasis> or <emphasis role="italic"
role="italic">accounts</emphasis>.You can manage projects >accounts</emphasis>, are organizational units in the
and users independently from each other.</para> cloud to which you can assign users. Users also have roles
<para>Users are members of one or more projects.</para> that determine their level of access to the project, and may
<para>During cloud set up, the operator defines at least one have different roles in different projects.</para>
project, user, and role. The operator links the role to the <para>When the cloud is initially created, the operator defines at
user and the user to the project. Roles define the actions least one project, user, and role.</para>
that users can perform. As an administrator, you can create <para>As an administrator, you can create additional projects and users as
additional projects and users as needed.</para> needed. This section documents the following project and user
<para>Learn how to add, update, and delete projects and users, administration tasks:</para>
assign users to one or more projects, and change or remove the <itemizedlist>
assignment. To enable or temporarily disable a project or <listitem>
user, update that project or user. You can also change quotas <para>Adding, updating, and deleting projects and
at the project level. For information, see <xref users.</para>
linkend="dashboard_set_quotas"/>.</para> </listitem>
<para>When you create a user account, you must assign the account <listitem>
to a primary project. Optionally, you can assign the account <para>Assigning users to one or more projects, and changing or
to additional projects. Before you can delete a user account, removing the assignment.</para>
you must remove the user account from its primary </listitem>
project.</para> <listitem>
<para>Enabling or temporarily disabling a project or
user.</para>
</listitem>
</itemizedlist>
<para>You can also change quotas at the project level. For information, see
<xref linkend="dashboard_set_quotas"/>.</para>
<section xml:id="dashboard_create_project">
<title>Create a project</title>
<procedure>
<step>
<para>Log in to the dashboard and choose the
<guilabel>admin</guilabel> project from the
<guilabel>CURRENT PROJECT</guilabel> drop-down
list at the top of the screen.</para>
</step>
<step>
<para>In the <guilabel>Admin</guilabel> tab, open the
<guilabel>Identity Panel</guilabel> and click
on <guilabel>Projects</guilabel>.</para>
</step>
<step>
<para>Click <guibutton>Create
Project</guibutton>.</para>
</step>
<step>
<para>On the <guilabel>Project Info</guilabel> tab in
the <guilabel>Create Project</guilabel> window,
enter a name and description for the project. By
default, the project is enabled. See <xref
linkend="disable_project"/>.</para>
</step>
<step>
<para>On the <guilabel>Project Members</guilabel> tab,
add members to the project.</para>
</step>
<step>
<para>On the <guilabel>Quota</guilabel> tab, edit
quota values. For information about quotas, see
<xref linkend="dashboard_set_quotas"/>.</para>
</step>
<step>
<para>Click <guibutton>Create
Project</guibutton>.</para>
<para>The <guilabel>Projects</guilabel> list shows the
project, including its assigned ID.</para>
</step>
</procedure>
</section>
<section xml:id="dashboard_update_project">
<title>Update a project</title>
<para>You can update a project to change its name or
description, and enable or temporarily disable it.</para>
<procedure>
<step>
<para>In the <guilabel>Admin</guilabel> tab, open the
<guilabel>Identity Panel</guilabel> and click
on <guilabel>Projects</guilabel>.</para>
</step>
<step>
<para>Select the project that you want to update.</para>
</step>
<step>
<para>In the <guilabel>More</guilabel> drop-down list,
click <guilabel>Edit Project</guilabel>.</para>
</step>
<step>
<para>In the <guilabel>Edit Project</guilabel> window,
you can update a project to change its name or
description, and enable or temporarily disable
it.</para>
<para>By default, the project is enabled. To
temporarily disable it, clear the
<guilabel>Enabled</guilabel> check box. To
enable a disabled project, select the
<guilabel>Enabled</guilabel> check box.</para>
</step>
<step>
<para>Click <guibutton>Save</guibutton>.</para>
</step>
</procedure>
<section xml:id="disable_project"> <section xml:id="disable_project">
<title>Consequences of disabling projects and users</title> <title>Consequences of disabling projects</title>
<para>When you disable a project, it has the following <para>When you disable a project, it has the following
consequences:</para> consequences:</para>
<itemizedlist> <itemizedlist>
@@ -55,83 +135,7 @@
time.</para> time.</para>
</listitem> </listitem>
</itemizedlist> </itemizedlist>
<para>When you disable a user account, the user can no longer
log in, but the data for the user is maintained so that
you can enable the user again at any time.</para>
</section> </section>
<section xml:id="dashboard_create_project">
<title>Create a project</title>
<procedure>
<step>
<para>Log in to the dashboard and choose the
<guilabel>admin</guilabel> project from the
<guilabel>CURRENT PROJECT</guilabel> drop-down
list.</para>
</step>
<step>
<para>On the <guilabel>Admin</guilabel> tab, click the
<guilabel>Projects</guilabel> category.</para>
</step>
<step>
<para>Click <guibutton>Create
Project</guibutton>.</para>
</step>
<step>
<para>On the <guilabel>Project Info</guilabel> tab in
the <guilabel>Create Project</guilabel> window,
enter a name and description for the project. By
default, the project is enabled. See <xref
linkend="disable_project"/>.</para>
</step>
<step>
<para>On the <guilabel>Project Members</guilabel> tab,
add members to the project.</para>
</step>
<step>
<para>On the <guilabel>Quota</guilabel> tab, edit
quota values. For information about quotas, see
<xref linkend="dashboard_set_quotas"/>.</para>
</step>
<step>
<para>Click <guibutton>Create
Project</guibutton>.</para>
<para>The <guilabel>Projects</guilabel> category shows
the project, including its assigned ID.</para>
</step>
</procedure>
</section>
<section xml:id="dashboard_update_project">
<title>Update a project</title>
<para>You can update a project to change its name or
description, and enable or temporarily disable it.</para>
<procedure>
<step>
<para>On the <guilabel>Admin</guilabel> tab, click the
<guilabel>Projects</guilabel> category.</para>
</step>
<step>
<para>Select the project that you want to update.
</para>
</step>
<step>
<para>In the <guilabel>More</guilabel> drop-down list,
click <guilabel>Edit Project</guilabel>.</para>
</step>
<step>
<para>In the <guilabel>Edit Project</guilabel> window,
you can update a project to change its name or
description, and enable or temporarily disable
it.</para>
<para>By default, the project is enabled. To
temporarily disable it, clear the
<guilabel>Enabled</guilabel> check box. To
enable a disabled project, select the
<guilabel>Enabled</guilabel> check box.</para>
</step>
<step>
<para>Click <guibutton>Save</guibutton>.</para>
</step>
</procedure>
</section> </section>
<section xml:id="dashboard_user_assignments"> <section xml:id="dashboard_user_assignments">
<title>Modify user assignments for a project</title> <title>Modify user assignments for a project</title>
@@ -142,16 +146,14 @@
assignments.</para> assignments.</para>
<procedure> <procedure>
<step> <step>
<para>On the <guilabel>Admin</guilabel> tab, select <para>In the <guilabel>Admin</guilabel> tab, open the
the <guilabel>Projects</guilabel> category.</para> <guilabel>Identity Panel</guilabel> and click
on <guilabel>Projects</guilabel>.</para>
</step> </step>
<step> <step>
<para>Select a project to modify its user <para>Click the <guilabel>Modify Users</guilabel>
assignments.</para> button for the project that you want to
</step> modify.</para>
<step>
<para>Select <guibutton>Modify
Users</guibutton>.</para>
<para>The <guilabel>Edit Project</guilabel> window <para>The <guilabel>Edit Project</guilabel> window
shows the following lists of users:</para> shows the following lists of users:</para>
<itemizedlist> <itemizedlist>
@@ -163,7 +165,7 @@
<listitem> <listitem>
<para><guilabel>Project Members</guilabel>. <para><guilabel>Project Members</guilabel>.
Users that are assigned to the current Users that are assigned to the current
project, </para> project.</para>
</listitem> </listitem>
</itemizedlist> </itemizedlist>
<figure xml:id="cloud_dash_users_list"> <figure xml:id="cloud_dash_users_list">
@@ -206,30 +208,34 @@
<guilabel>Projects</guilabel> category.</para> <guilabel>Projects</guilabel> category.</para>
</step> </step>
<step> <step>
<para>Select the projects that you want to delete. <para>Select the projects that you want to delete.</para>
</para>
</step> </step>
<step> <step>
<para>Click <guibutton>Delete Projects</guibutton> to <para>Click <guibutton>Delete Projects</guibutton> to
confirm the deletion.</para> confirm the deletion.</para>
<note> <warning>
<para>You cannot undo the delete action.</para> <para>You cannot undo the delete action.</para>
</note> </warning>
</step> </step>
</procedure> </procedure>
</section> </section>
<section xml:id="dashboard_create_user"> <section xml:id="dashboard_create_user">
<title>Create a user account</title> <title>Create a user account</title>
<para>When you create a user account, you must assign the account to a
primary project. You also have the option of assigning the account
to additional projects. Before you can delete a user account, you
must remove the user account from its primary project.</para>
<procedure> <procedure>
<step> <step>
<para>Log in to the dashboard and choose the <para>Log in to the dashboard and choose the
<guilabel>admin</guilabel> project from the <guilabel>admin</guilabel> project from the
<guilabel>CURRENT PROJECT</guilabel> drop-down <guilabel>CURRENT PROJECT</guilabel> drop-down
list.</para> list at the top of the screen.</para>
</step> </step>
<step> <step>
<para>On the <guilabel>Admin</guilabel> tab, select <para>In the <guilabel>Admin</guilabel> tab, open the
the <guilabel>Users</guilabel> category.</para> <guilabel>Identity Panel</guilabel> and click
on <guilabel>Users</guilabel>.</para>
</step> </step>
<step> <step>
<para>Click <guibutton>Create User</guibutton>.</para> <para>Click <guibutton>Create User</guibutton>.</para>
@@ -257,19 +263,22 @@
</section> </section>
<section xml:id="dashboard_disable_user"> <section xml:id="dashboard_disable_user">
<title>Disable or enable a user</title> <title>Disable or enable a user</title>
<para>When you disable a user account, the user can no longer log in.
However, the data for the user is maintained so that you can enable
the user again at any time.</para>
<procedure> <procedure>
<step> <step>
<para>On the <guilabel>Admin</guilabel> tab, select <para>In the <guilabel>Admin</guilabel> tab, open the
the <guilabel>Users</guilabel> category.</para> <guilabel>Identity Panel</guilabel> and click
on <guilabel>Users</guilabel>.</para>
</step> </step>
<step> <step>
<para>Select the user that you want to disable or <para>Locate the user that you want to disable or
enable. You can disable or enable only one user at enable in the Users list.</para>
a time.</para>
</step> </step>
<step> <step>
<para>In the <guilabel>Actions</guilabel> drop-down <para>In the <guilabel>More</guilabel> drop-down list,
list, select <guilabel>Disable User</guilabel> or select <guilabel>Disable User</guilabel> or
<guilabel>Enable User</guilabel>.</para> <guilabel>Enable User</guilabel>.</para>
<para>In the <guilabel>Enabled</guilabel> column, the <para>In the <guilabel>Enabled</guilabel> column, the
enabled value updates to either enabled value updates to either

12
doc/user-guide/section_dashboard_access_and_security.xml
View File

@@ -5,12 +5,12 @@
xml:id="Launching_Instances_using_Dashboard"> xml:id="Launching_Instances_using_Dashboard">
<title>Configure access and security for instances</title> <title>Configure access and security for instances</title>
<?dbhtml stop-chunking?> <?dbhtml stop-chunking?>
<para>Before you launch an instance, you should add security group <para>Before you launch an instance, you should add security group rules to
rules to enable users to ping and use SSH to connect to the enable users to ping and use SSH to connect to the instance. Security
instance. To do so, you either <link groups are sets of IP filter rules that define networking access and are
xlink:href="#security_groups_add_rule">add rules to the applied to all instances within a project. To do so, you either <link
default security group</link> or add a security group with xlink:href="#security_groups_add_rule">add rules to the default
rules.</para> security group</link> or add a new security group with rules.</para>
<para>Key pairs are SSH credentials that are injected into an <para>Key pairs are SSH credentials that are injected into an
instance when it is launched. To use key pair injection, the instance when it is launched. To use key pair injection, the
image that the instance is based on must contain the image that the instance is based on must contain the