Jump to main content
ECS 3.3 Administration Guide
  • Welcome to ECS
  • Overview
  • Getting Started with ECS
  • Storage Pools, VDCs, and Replication Groups
  • Authentication Providers
  • Namespaces
  • Users and Roles
  • Buckets
  • File Access
  • Certificates
  • ECS Settings
  • ECS Outage and Recovery
  1. Home
  2. Users and Roles
  3. Users in ECS

    ECS requires two types of user: management users, who can perform administration of ECS, and object users, who access the object store to read and write objects and buckets.

  • Welcome to ECS

    ECS provides a complete software-defined cloud storage platform that supports the storage, manipulation, and analysis of unstructured data on a massive scale on commodity hardware. ECS can be deployed as a turnkey storage appliance or as a software product that can be installed on a set of qualified commodity servers and disks. ECS offers all the cost advantages of commodity infrastructure with the enterprise reliability, availability, and serviceability of traditional arrays.

  • Overview
  • Getting Started with ECS
  • Storage Pools, VDCs, and Replication Groups
  • Authentication Providers
  • Namespaces
  • Users and Roles
    • Introduction to users and roles

      In ECS you can configure users and roles to control access to the ECS management tasks and to the object store. Management users can perform administration tasks in the ECS Portal. Object users cannot access the ECS Portal but can access the object store using clients that support the ECS data access protocols.

    • Users in ECS

      ECS requires two types of user: management users, who can perform administration of ECS, and object users, who access the object store to read and write objects and buckets.

      • Management users

        Management users can perform the configuration and administration of the ECS system and of namespaces (tenants) configured in ECS.

      • Default management users

      • Object users

        Object users are end-users of the ECS object store, and they access ECS through object clients that are using the object protocols that ECS supports (S3, EMC Atmos, Openstack Swift, and CAS). Object users can also be assigned Unix-style permissions to access buckets exported as file systems for HDFS.

      • Domain and local users

        ECS provides support for local user and domain users. Local and domain users can be assigned as management users or object users.

      • User scope

        The user scope setting affects all object users, in all namespaces across all federated VDCs.

      • User tags

    • Management roles in ECS

      ECS defines roles to determine the operations that a user can perform in the ECS Portal or when accessing ECS using the ECS Management REST API. Management users and groups can be assigned to administration roles in ECS and can be either local users or domain users. Roles can also be assigned to Active Directory group names.

    • Working with users in the ECS Portal

      You can use the User Management page available from Manage > Users to create local users assigned as object users for a namespace. You can also create management users, which can be new local users to whom you assign management roles, or domain users to whom you assign management roles.

  • Buckets
  • File Access
  • Certificates
  • ECS Settings
  • ECS Outage and Recovery

Users in ECS

ECS requires two types of user: management users, who can perform administration of ECS, and object users, who access the object store to read and write objects and buckets.

The following topics describe ECS user types and concepts.

  • Management users
  • Default management users
  • Object users
  • Domain and local users
  • User scope
  • User tags