Role-Based Access Control (RBAC) FAQ

  • Last updated on: 2016-06-17
  • Authored by: Renee Rendon

Get quick answers to common questions about Role-Based Access Control (RBAC).

What is the cost to opt in to RBAC?

RBAC is a no-cost feature that is available to selected public cloud services with an API.

Can a customer opt out of RBAC?

Customers can opt out by simply removing the account users.

Is RBAC available internationally?

Yes, RBAC is available to all Rackspace customers.

Can I configure custom role assignments when I add a user login to an existing contact?

Yes, you can. See Use Role-Based Access Control (RBAC) for instructions.

How do I query the capability of a given user?

You can query the roles for a given user by using the List global roles assigned to a user API operation described in the Rackspace Cloud Identity API Guide. Additionally, you can view the roles that a user has through the Cloud Control Panel.

Can I view multiple accounts in the Cloud Control Panel?

You can view only one account at a time in the Cloud Control Panel.

Can Rackspace display usage per billing or per user?

No. Per-billing and per-user usage are not offered at this time.

Which users can create support tickets?

All users can create support tickets; however, only the account owner is updated on the ticket status.

Can I delegate all functionality as an account owner?

Not at this time, but we are working on developing and delivering that functionality.

Does RBAC provide fine-grained access control for specific servers, directories, or files?

RBAC is limited to granting a user access to a given product. It is not granular enough to restrict access to individual servers, files, or directories.

Does the API offer more features for RBAC than the Cloud Control Panel offers?

Yes, at this time more features are available through the API. For more information about using the API for RBAC, see the Rackspace API Documentation.

Do account users automatically inherit the RackConnect and Managed Cloud features?

Yes.

How does RBAC work with MyRackspace?

With the implementation of RBAC, account owners can leave permissions as they are in MyRackspace or set up restricted access to specific products for users through the Cloud Control Panel. For more detailed information, see Using RBAC with MyRackspace.

These permissions cannot be linked at this time. Having a common permission scheme among dedicated, hybrid, and cloud customers will be addressed in the future.

Are servers, containers, files, databases, and load balancers shared, or do users each have their own set of resources?

All resources for an account are shared across users that have the correct roles. In other words, account users do not have their own set of resources but share a pool of resources that other users of the account may have access to.

Where can I view the pop-up window that appeared when I initially enabled RBAC?

Following is the initial pop-up window that appears when you enable RBAC.

For information about additional products that will be RBAC enabled in the future, see Learning about Role Based Access Control (RBAC).

For information about changing your admin credentials, see Use Role-Based Access Control (RBAC).

For access to the Cloud Control Panel, log in at https://mycloud.rackspace.com/.

Additional resources

Continue the conversation in the Rackspace Community.