User¶

In this guide, you will learn how to manage users in DataOS by navigating the Users tab in Bifrost

Scenario¶

As a DataOS Operator, you manage users within Bifrost and ensure they have access to necessary resources by assigning appropriate Roles and policies. Recently, your data engineering team requested access to manage Depot within DataOS. You have already created a policy for the data-dev Role; now, you will assign this Role to your organization's data engineers to give them access to the Depot.

Before you assign Roles to your users, you must first understand how to navigate the Users tab in Bifrost—a vital section where you can view and manage user access, Roles, and policies.

Users tab in Bifrost¶

In Bifrost, the Users tab displays a list of users accessing DataOS. Users can be categorized into two types: person and application. New users can be added by clicking the Create User button, but keep in mind the following:

Application users can only be added directly through Bifrost.
Person-type users require access to your organization’s Active Directory (AD) before being added.

User details panel¶

Clicking on any user will give you detailed info about the particular user.

Info: Displays general information or metadata about the user.
Tags: This section lists the tags associated with the user, who assigned them, and an option to delete tags if necessary.
Grants: This section summarizes the use cases granted to the user. Clicking on a use case displays the associated tags. You can also grant a new use case to the user.
Change Logs: Tracks user profile changes, offering an audit trail.
Advanced: This field contains the federated User ID and Connection ID for authentication. By default, the system uses the federated user ID, but you can add other properties for user identification.