Users

Available in Classic and VPC

This section describes how to register and manage external user information as an SSO user to enable SSO login to the NAVER Cloud Platform account with an external account.

Users interface

The description of the Users interface is as follows:

Component	Description
① Menu name	Current menu name.
② Basic features	Features displayed when you enter the Users menu for the first time. [Create user]: Go to the SSO user creation page. [Learn more]: Go to the Ncloud Single Sign-On overview page. [Refresh]: Reload the current page.
③ Post-registration features	[Delete]: Delete the SSO user selected. [Disable]: Disable the SSO user selected. [Enable]: Enable the SSO user selected.
④ SSO user list	View the SSO user list and information.
⑤ Search	Search by login ID, user ID, or NRN.

Check SSO user details

SSO user refers to an external account user set up to log in to NAVER Cloud Platform. If you create an SSO user with user information registered in an external account, you can log in to NAVER Cloud Platform based on user property information.

To view SSO user details:

From the NAVER Cloud Platform console, navigate to > Services > Management & Governance > Ncloud Single Sign-On.
Navigate to External IdP login > Users.
Click the login ID on the SSO user list.
Check details.
- Login ID: Login ID of the SSO user.
- Status: The status of the SSO user.
  - In usage: Login and service use are available.
  - Interruption: In temporary suspension.
- ID: Automatically assigned ID when creating an SSO user.
- NRN: Automatically assigned resource name when creating an SSO user.
- Creation date and time: Date and time when the SSO user was created.
- Edited date and time: Time when the SSO user information was last edited.
- Access type: Console access and API Gateway settings.
- Last access time: Date and time when the SSO user last logged in.
- Description: Simple description of the SSO user.
- Tag: Assign tag keys/values to easily classify SSO users.
  - View, create, edit, and delete all tags through [Tag management].
  - Only 1 tag value can be assigned to 1 tag key.
Check the tab at the bottom of the details.
- [Profile]
  - Key: Integrate user properties with external account.
  - Sync Mode: User profile's updating mode.
    - None: Do not update user profile.
    - Import: Update user profiles only at first login.
    - Force: Update the user profile at every login.
  - Value: Integrated value with external account.
- [Groups]
  - Group name: The name of the group to which the SSO user belongs.
  - Group description: The description of the group to which the SSO user belongs.
  - Added time: Date and time when the SSO user was added to the group.
- [Active Console Sessions]
  - Session: Name of the session assigned automatically for its classification.
  - IP Address: IP Address accessing console or API Gateway.
  - Accessed account: Accounts connected with the SSO role selected when accessing the console or API Gateway.
  - Permission Set: Name of the permission set connected with SSO role selected when connecting with Console.
  - Creation date and time: Date of access.
  Note
  
  For more information about API access, see Cloud Activity Tracer.
- [Assignments]
  - Assignment name: Assignment name.
  - Account: Account connected with the assignment. An account that holds policy resources to be used by SSO users.
  - Assignment description: Description of the assignment.
  - NRN: Assignment resource name.
  - Status: Status of the assignment.
    - In usage: Status in which the assignment is available.
    - Interruption: Status in which the assignment is interrupted.
  - Last edited time: The time when the assignment was edited for the last time.
  - Creation date and time: Date and time when the assignment was created.
- [MFA Device]
  - Authentication method: MFA authentication method.
  - Registered information: Registered information to identify MFA Device.
  - Registered date and time: Date and time when the MFA Device was registered for the first time.

Create SSO users

To create SSO users:

From the NAVER Cloud Platform console, navigate to > Services > Management & Governance > Ncloud Single Sign-On.
Navigate to External IdP login > Users.
Click the [Create users].
Enter information in the SSO user information component.
- Login ID: Enter Login ID in email format with less than 60 characters.
- Description: Enter a description of the SSO user with up to 300 characters.
- Access type:
  - Console access: Allow access through console only.
  - API Gateway access: Allow access only through API Gateway.
Enter the user profile to be integrated in the Profile component or leave it empty.
- To automatically retrieve the user profile from the IdP to be integrated, leave the input field empty.
In the tag component, enter the tag Key:Value to classify users.
Click [Create].

Edit SSO user information

To edit SSO user information:

From the NAVER Cloud Platform console, navigate to > Services > Management & Governance > Ncloud Single Sign-On.
Navigate to External IdP login > Users.
Click the login ID.
Click the [Edit].
Edit the information.
Click the [Edit].

Disable SSO users

You can disable a specific SSO user. If you disable SSO user, you will not be able to access with that login ID.

To disable an SSO user:

From the NAVER Cloud Platform console, navigate to > Services > Management & Governance > Ncloud Single Sign-On.
Navigate to External IdP login > Users.
Click the [Disable users].

Delete SSO users

To delete SSO users:

Caution

Once you delete an SSO user, you cannot restore it. So decide carefully.

From the NAVER Cloud Platform console, navigate to > Services > Management & Governance > Ncloud Single Sign-On.
Navigate to External IdP login > Users.
Click the checkbox of the user to delete.
Click the [Delete].
Once the Delete popup window appears, click the [Delete].