OEM Cloud instance
In contrast to the public cloud, an OEM cloud instance is managed by the instance administrators of an OEM. As a rule, only an instance administrator can create new cloud projects and add other people to the cloud instance. An instance administrator can also make further settings to the cloud instance.
Instance settings
The dialog with the instance settings can be opened via the management navigation by clicking on Settings and is structured into the following sections:
| Admins | For adding and removing instance administrators. |
| Service User |
For adding and removing service users. Service users automatically have access to all projects for which service access is activated. |
| User roles | To add further user roles (see Extended user roles). |
| API |
For controlling the cloud instance via REST API. The REST API must first be activated by the operator. |
Extended user roles
Further levels can be added to the default user roles. The extended user roles can be used to restrict access to certain views and only allow access for certain groups of people. As soon as a name has been entered at the desired level, the new user role is available in the entire cloud instance. All rights are inherited from the previous default user role.
As can be seen in the image, there is a new user role Extended User. This role inherits all the rights of the role User. Access to a view can therefore be restricted without having to assign the next higher default user role to the relevant group of people.
Note: The roles should be extended with caution. The corresponding level is always saved.