Multiple Control Panel Users Per Account
It would be nice if you could delegate/manage/authorize multiple users in the control panel... like Slicehost.
The idea of one admin user / account sucks. There's no way to collaborate without sharing your admin credentials...
bobbyuser
shared this idea
For our US API customers – multiple users for an account is now available! UK API customers, this will be coming soon.
We will continue to work to get this functionality into Control Panel and provide fine-grained-access control.
API guide is available at: http://docs.rackspace.com/auth/api/v2.0/auth-client-devguide/content/QuickStart-000.html
44 comments
-
John Larsen
commented
Agreed. The Cloud Hosting Control Panel needs to allow for multiple administrators with varying levels of account access. Some sort of ACL is absolutely required from a compliance perspective. I would add there should also be logging of activity so one can see who is doing what from within the control panel.
-
Jim Edelstein
commented
This is a serious problem for us, please address ASAP - multiple API users doesn't really cut it
-
John Oltman
commented
This is an important feature for me as well. Need the ability for a role that can see servers, submit tickets via the portal etc but cannot wipe out my account either by accident or maliciously.
-
Kyle Heironimus
commented
As of April 12, 2012, I have successfully added additional users to the API and can use them in the API, but they are not usable in the portal. It's a start, at least.
As a user migrating from Slicehost, this is a big step back.
-
acgann
commented
Sure it does. http://docs.rackspace.com/auth/api/v2.0/auth-client-devguide/content/POST_addUser__.html#webhelp-currentid
You can add multiple users via the API. The implementation could go further, but at least it's a start. One thing I want to see is if once these users are created via the API if you can use them on the Rackspace App for example or the my.rackspace portal. So you keep the master user and API key separate and give your devs access to your machines with the API keys. Still gives too much access but if someone leaves, at least you have a way to revoke them immediately without killing all your other stuff. Also, I would set a separate user/pw for scripts lighting off backups or using cloud files. Need to kick the tires on this to see what all we can actuall do.
-
dtb71
commented
Yeah, I've got same response as @Cory. Glad someone's looking at this.... but couldn't find any reference to multiple users in that page in the API guide -- not sure if that's the wrong link, or what
-
Cory
commented
This QuickStart document describes how to use a u/p with an API request but makes no reference to multiple users, so I don't see what this has to do with the "multiple control panel users" request. Glad you are working on it, though..?
-
Anonymous
commented
too little too late, we went elsewhere. One day when you grow up you will have a unified release cycle that allows global clients to use the same features.
-
Searchie
commented
That was also my first concern after login, happy to read it will come soon. Better sooner then later.
-
Aaron Ward commented
This feature is crucial for my business. I would like to duplicate the functionality of my FTP - Allow user to upload and download files from a designated directory.
-
Henri Cook
commented
I'd also very much enjoy a 'server maintenance' role that could only stop/restart instances and not destroy them completely - that sounds like a recipe for a support-engineer style disaster where instead of rebooting they erase the machine completely and try to recreate it
-
Henri Cook
commented
Now that we're starting to use Rackspace it's exactly what we need, I don't want to give someone who's working on Cloud Files life-or-death access to all of our server instances as well
-
Anonymous
commented
well using curl in linux allowed us to get around that. the Json output from that still needs some work. It isn't that hard. 'AWK'ward a perl in the rough, and yeah most people pay peanuts for $helling. However totally doable from the API with curl and 20 minutes. T o upgrade it to RBACS was just a matter of having a tarball prepared from the NSA's released version of linux that they still further tweak, it is a darned good start the url is quite findable.
-
Anonymous
commented
I need role based access, it would be nice to be granular, in the API as well. Curl, python are my friends.
-
Johni Fisher
commented
Its a must for us
-
arobb
commented
They've had multi user on my.rackspace.com for years so it's clearly do-able. It's really shoddy on managed cloud, clearly sharing credentials is a farce.
-
Jarl Friis
commented
I suggest a solution where one user (the one that enters the payment and invoice details) can delegate technical access such as the server console (the java applet) to a different user.
-
Arti Villa
commented
Yup! Giving away your username/pass to oversees company is daunting. 3 votes from me :) come on RackSpace!!! The world knows you guys. You can't let your customers down.
-
acgann
commented
This request is actually over 2 years old. Before the feedback forum, there was a discussion forum that had this thread on it. I know we personally have been asking for this feature for a year and a half.
This is a complex change as it touches a lot of stuff...the API on the backend, the control panel on the front. And from the roadmap I saw on OpenStack, there are a broad range of improvements (more than just adding more users....more API keys, etc). So I get that developing that isn't an overnight thing. Just *really* tired of waiting.....
My guess would be 3-9months. I think they're rolling out a new control panel right around the end of the year (if the target hits on time). So we might get it then. Or they may wait until they roll out Nova (CloudServers), in which case probably summer-fall of next year. Of course, I don't work for Rackspace, so this *is* really a guess based on what I currently know (which isn't much).
-
Anonymous
commented
Another three votes from me - It is Essential... we have this on our Non-cloud services so why not here?
