Role-Based Access Control (RBAC)
Role-Based Access Control (RBAC) in Pulumi Cloud provides a flexible and secure way to manage access to your organization’s resources. This allows you to exercise fine-grained control over who can access what resources in your organization and what actions they can perform.
Leveraging Pulumi’s RBAC features empower Enterprise organizations to follow best practices:
- Granular Access Control: Define precise access levels for different resources.
- Simplified Management: Easily manage access as they grow by building out reusable RBAC elements.
- Security: Enforce least privilege access to resources.
RBAC Constructs
Pulumi Cloud’s RBAC system is built on these core concepts:
- Scopes: Granular access rights that define specific actions on resources
- Permissions: Predefined bundles of scopes that are commonly used together
- Roles: Collections of permissions applied to resources and assigned to principals.
- Teams: Groups of users that can be assigned roles.
Customization
Enterprise organizations have access to manage and create their own Teams. They also can manage and create their own custom Permissions and Roles, on top of the defaults available to every organization in Pulumi.
Thank you for your feedback!
If you have a question about how to use Pulumi, reach out in Community Slack.
Open an issue on GitHub to report a problem or suggest an improvement.