1 - Overview

Service Overview

ID Center is a service that allows you to easily manage access permissions for account-based resources on the Samsung Cloud Platform from a central location. You can manage to perform tasks according to user permissions by creating authority policies for each service and assigning accounts and policies associated with the Organization service to users.

Features

  • Easy Access Control: Through SAML (Security Assertion Markup Language) based qualification authentication, it is possible to access the resources of multiple accounts within the organization by granting authentication and authorization from the Samsung Cloud Platform.
  • Efficient Account Management: Integrated management of costs and resource usage from all accounts owned by the organization is possible by linking with the Organization service.
  • Account Security Enhancement: Security can be enhanced by allowing only authorized ID Center users to access through the Access Portal, which is provided separately from the Samsung Cloud Platform Console. Through the Access Portal, it is possible to prevent other users outside the customer organization from accessing the account in the first place.

Composition

Configuration Diagram
Figure. ID Center Configuration Diagram

Provided Features

ID Center provides the following functions.

  • User and User Group Management: User and user group management can be created and service-specific authority management policies can be configured. Users must have MFA (Multi-Factor Authentication) applied to strengthen account access management.
  • Account Assignment Management: You can assign and manage accounts corresponding to each user’s task.
  • Permission Set Management: You can create and manage permission sets using default policies or custom policies for each account, or by configuring policies directly.
  • Access Portal Provided: An Access Portal is provided instead of Samsung Cloud Platform Console, allowing only ID Center users to access.

Components

User

The administrator can create users and add them to user groups. The administrator can automatically generate or manually create user passwords and provide users with Access Portal connection information. Additionally, administrators can assign users to accounts that match each task.

Reference
For more information on user management, see How-to guides > Managing Users.

User Group

You can link users and accounts through user groups. You can configure user groups suitable for each task and register users to assign them to accounts.

Reference
For more information about user groups, see How-to guides > Managing user groups.

Permission Set

You can create a set of permissions by utilizing the default policies and custom policies existing in the Account or by directly composing a policy.

Reference
For more information about permission sets, see How-to guides > Managing Permission Sets.

Regional Provision Status

ID Center can be provided in the following environment.

RegionAvailability
Western Korea(kr-west1)Provided
Korea East(kr-east1)Provided
South Korea (kr-south1)Provided
South Korea (kr-south2)Provided
South Korea, southern region 3(kr-south3)Not provided
Table. ID Center Regional Provision Status

Preceding Service

This is a list of services that must be pre-configured before creating this service. Please refer to the guide provided for each service and prepare in advance.

Service CategoryServiceDetailed Description
ManagementOrganizationA service that organizes accounts by organizational unit, manages them hierarchically, and controls resource access permissions
Table. ID Center Preceding Service

2 - How-to guides

The user can enter the required information of ID Center through the Samsung Cloud Platform Console, select detailed options, and create the service.

ID Center Create

You can create and use an ID Center in the Samsung Cloud Platform Console.

Guide
ID Center can only be managed in the region where the ID Center was created.
Reference
Only the Organization’s Management Account can create an ID Center.

To create an ID Center, follow the steps below.

  1. Click the All Services > Management > ID Center menu. Go to the Service Home page of ID Center.
  2. Click the ID Center Application button on the Service Home page. Navigate to the ID Center Creation page.
  3. ID Center creation page, after entering the basic information, click the Complete button.
    Category
    Required
    Detailed description
    ID Center nameRequiredEnter the name of the ID Center
    • Enter using English letters, numbers, special characters (+=-_@,.) within 3~128 characters
    DescriptionSelectEnter a description of the organizational unit within 1,000 characters
    Credential SourceRequiredSelect Credential Source Type
    • ID Center’s own directory: Use directory within ID Center
    • AD (Active Directory): Use Active Directory managed directly by the user
      • Automatically synchronize AD information upon creation
    Table. ID Center creation basic information
  4. When the popup notifying the creation of ID Center opens, click the Confirm button.
  5. Service Home Check the ID Center dashboard on the page.
    CategoryDetailed description
    ID Center InformationDisplays the name, ID, and Access Portal URL of the ID Center
    • Clicking the ID Center Information item navigates to the ID Center Settings page where detailed ID Center information can be viewed
    UserNumber of users created in ID Center
    • Clicking the user count moves to the User List page
    • Clicking the Create item moves to the User Creation page. Create User refer
    User GroupNumber of user groups created in ID Center
    • Clicking the group count moves to the User Group List page
    • Clicking the Create item moves to the User Group Creation page. See Create User Group
    Permission SetNumber of permission sets created in ID Center
    • Click the number of permission sets to go to the Permission Set List page
    Table. ID Center Service Home Dashboard Items

ID Center Check detailed information

You can view detailed information of the ID Center and manage permissions.

To view detailed information of the ID Center and manage permissions, follow the steps below.

  1. All Services > Management > ID Center Click the menu. Navigate to ID Center’s Service Home page.
  2. Service Home page, click the ID Center Settings menu. Navigate to the ID Center Settings page.
CategoryDetailed description
ID Center DeleteButton to delete ID Center
  • Not displayed on delegated accounts
serviceservice name
Resource TypeResource Type
SRNUnique resource ID in Samsung Cloud Platform
Resource NameResource Name
Resource IDUnique resource ID in the service
CreatorUser who created the service
Creation timeTime the service was created
EditorUser who modified the service information
Modification Date and TimeDate and time when service information was edited
ID Center nameID Center name
  • Edit Click the button to change usage
RegionRegion that created the ID Center
DescriptionDescription of ID Center
  • By clicking the Edit button, you can change the usage status
Organization IDOrganization’s ID
Credential SourceType of Credential Source
  • Edit Click the button to change the credential source type
  • ID Center’s own directory: Directory within ID Center
  • AD (Active Directory): Active Directory managed directly by the user
    • AD Reset: Reset AD Information A popup opens, allowing AD information to be edited
    • After reset is complete, synchronization proceeds
  • Synchronization: Synchronize with AD
Access Portal URLURL to access the Access Portal
Delegated AuthorityDisplay Account Name, Account ID, Email, Delegation Date/Time information of the Account that delegated ID Center management authority
  • For delegated Accounts, the managing Account’s information is displayed and delegation or cancellation is not possible
  • Permission Delegation: Permission can be delegated to an Account within ID Center
    • Displayed when there is no delegation information
    • When the button is clicked, you can select an Account on the Permission Delegation page to set delegation
  • Cancel Permission Delegation: Cancel permission delegation
Table. ID Center configuration items

Managing Credential Sources

You can change the credential source type or change and manage the setting values of the AD (Active Directory) type.

AD (Active Directory) Apply for Integration

To use a user-managed AD (Active Directory) integration, you must first prepare the VPC and Load Balancer, then submit a request via SR. To apply for AD integration, follow the steps below.

  1. Secure a VPC to integrate with the user’s AD.

    • If network connection is required, connect to the network where the user’s AD exists via the Direct Connect service.
    • For more details, refer to Create Direct Connect.
  2. Configure the Load Balancer.

    1. Create a Load Balancer and an LB server group.
    2. Add the IP to be linked with AD as a member of the connected resources of the LB server group.
    3. Create a Listener from the connected resources of the Load Balancer and connect the LB server group.
      Guide
      • Through the Load Balancer service, call information for AD synchronization from ID Center can pass through the user’s VPC to call the user’s AD.
      • For detailed information on creating and using the Load Balancer service, please refer to Using Load Balancer Service.
  3. Configure the PrivateLink Service in the user’s VPC.

    1. Create the PrivateLink Service of the user VPC that will be called from ID Center.
    2. When creating a PrivateLink Service, select the Load Balancer created in step 2 as the connection resource.
  4. When the preparation work is finished, click the All Services > Management > Support Center menu. Move to the Service Home page.

  5. From the Service Home page, click the Service Request menu. Navigate to the Service Request List page.

  6. Click the Service Request button on the Service Request List page.

    • Select and enter the information required for the service request.
      Category
      Required
      Detailed description
      TitleRequiredTitle for service request
      • Enter within 64 characters using Korean, English, numbers, special characters (+=,.@-_)
      RegionRequiredSelect the region to request the service
      ServiceRequiredManagement service group’s ID Center service selection
      Work CategoryRequiredID Center AD Integration Request Optional
      ContentRequiredInformation input for ID Center AD linkage application
      Table. ID Center AD Integration Application Items
  7. Check the input information and click the Request button.

    • When creation is complete, check on the Service Request List page.
Notice
After requesting the service, you cannot edit or delete the content you wrote.

Change Credential Source Type

You can change the credential source or modify the settings.

Caution
If you change the credential source, all configuration information and resources such as previously set users, user groups, account assignments, and permission sets will be deleted.

Follow the steps below to change the credential source type.

  1. All Services > Management > ID Center Click the menu. Navigate to ID Center’s Service Home page.
  2. Click the ID Center Settings menu on the Service Home page. Navigate to the ID Center Details page.
  3. ID Center Details page, click the Edit button of the Credential Source item. Credential Source Change popup opens.
  4. After selecting the credential source type to use, click the Confirm button. A popup window notifying the credential source change will open.

CategoryDetailed description
ID Center own directoryUse directory within ID Center
  • No separate setting items
AD (Active Directory)Use Active Directory that the user manages directly
  • Connection URL: Enter the LDAP server address (e.g., ldap:// or ldaps:)
  • Bind DN: Enter the DN (Distinguished Name) of the administrator or service account used to access the LDAP server
  • Bind credentials: Enter the password for the account corresponding to the Bind DN
  • User DN: Enter the directory path where the user account is located (e.g., OU=Employees, OU=Accounts, DC=sub, DC=org)
  • Username LDAP attribute: Enter the user account identifier (e.g., sAMAccountName, uid)
  • RDN LDAP attribute: Enter the RDN (Relative Distinguished Name, the top-level attribute in the user DN)
  • User object classes: Enter the list of LDAP classes that define user objects, separated by commas (,) (e.g., persion, organizationPersion, usersAMAccount)
Table. Credential Source Type Change Items
5. After checking the contents of the precautions when changing and checking the check box, click the Confirm button. Go to the Service Home page to start changing the credential source type. * The change time varies depending on the scale, and you can confirm it through a notification once the change is completed. * You cannot navigate to another menu page while changes are being made.

AD (Active Directory) Information Synchronization

You can synchronize AD information.

Reference
  • AD information is automatically synchronized daily from 0:00 to 06:00 (Asia/Seoul, GMT +09:00).
  • If a new AD information connection is required, click the AD Reset button to change the AD information, then synchronize.

To synchronize AD information, follow the steps below.

  1. All Services > Management > ID Center Click the menu. Navigate to ID Center’s Service Home page.
  2. Click the ID Center Settings menu on the Service Home page. Navigate to the ID Center Details page.
  3. ID Center Details on the page, click the Sync button next to the sync time of the Credential Source item. The AD Information Sync popup window opens.
  4. After checking the synchronization notification, click the Confirm button. AD information synchronization will start.
    • The change time varies depending on the scale.

Manage Permissions

You can delegate the administrative rights of the ID Center to another Account, or revoke the delegated rights.

Delegating Permissions

You can delegate the management authority of the ID Center to another account.

Follow the steps below to delegate management rights to another account.

  1. All Services > Management > ID Center Click the menu. Navigate to ID Center’s Service Home page.
  2. Click the ID Center Settings menu on the Service Home page. Navigate to the ID Center Details page.
  3. Click the Permission Delegation button on the ID Center Details page. You will be taken to the Permission Delegation page.
    • Permission Delegation button is displayed only when there is no Account that has currently delegated authority.
  4. Permission Delegation on the page, after selecting the account to delegate authority to, click the Complete button.
    CategoryDetailed description
    Account nameAccount name
    Account IDAccount’s ID
    emailAccount email
    Additional DateAccount creation or registration date/time in Organization
    Add TypeMethod of adding Account in Organization
    • Create: Add by creating new on Add Account page
    • Join: Add an already created Account
    Table. ID Center Delegated Authority Account List
Note
When you click the View Hierarchy button, you can view the Account list in a hierarchical structure.

Cancel Delegation

You can revoke the administrative privileges of the ID Center delegated to another Account.

To cancel the delegation of administrative authority, follow the steps below.

  1. All Services > Management > ID Center Click the menu. Navigate to the Service Home page of ID Center.
  2. Click the ID Center Settings menu on the Service Home page. Navigate to the ID Center Details page.
  3. Click the Cancel Delegation button on the ID Center Details page.
  4. If a popup notifying the revocation of delegation opens, click the Confirm button.

ID Center Delete

Caution
An account delegated with the management of the ID Center cannot delete the ID Center.
Caution
When ID Center is deleted, all users, user groups, and permission sets within the ID Center are deleted, and all entries assigned to the Account are deleted.

To delete the ID Center, follow these steps.

  1. All Services > Management > ID Center menu, click. Go to ID Center’s Service Home page.
  2. Service Home on the page, click the ID Center 설정 menu. Navigate to the ID Center 설정 page.
  3. ID Center Settings on the page click the ID Center Delete button. ID Center Delete popup window opens.
  4. ID Center Delete After entering the name of the ID Center to delete in the popup window, click the Confirm button. Navigate to the Service Home page.
    • ID Center deletion time varies depending on the scale, and you can confirm via notification when deletion is complete.
    • While deleting the ID Center, you cannot navigate to other menu pages.

2.1 - ID Center User Management

ID Center’s user can be checked and managed.

Create User

You can create a user and add it to the ID Center.

To create a user, follow the following procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.
  2. Service Home page, click the User menu. It moves to the User List page.
  3. User List page, click the Create User button. It moves to the Create User page.
  4. User Created page, enter the basic information and additional information, then click the Complete button.
    Classification
    Necessity
    Detailed Description
    UsernameRequiredEnter the user’s name
    • Use English letters, numbers, and special characters (+=-_@,.) within 128 characters
    • The username cannot be changed after creation
    DescriptionSelectionEnter a description of the user within 1,000 characters
    PasswordRequiredPassword creation method selection
    • Automatic generation: Automatically generate a password and provide it in a popup window when user creation is complete
    • Direct input: Refer to the password creation rules and enter directly
    User Real NameRequiredEnter the user’s last name and first name in real name
    Affiliation Information InputSelectEnter business unit, department, administrator, and employee number information, each within 128 characters
    User Group SelectionSelectSelect the user group to which you want to add users
    Table. User-generated information
Password Creation Rules
  • Uppercase letters (English), lowercase letters (English), numbers, special characters (! @ # $ % & * ^) must each be included at least once.
  • The length is 9~20 characters.
  • ID or username cannot be used as a password.
  • The same character cannot be used three times or more.
  • Easily guessable passwords cannot be used.
  • Recently used passwords cannot be used.
  • 4 characters or more of continuous characters/numbers cannot be used.
  • The password change cycle is 90 days.
  1. When the popup window notifying user addition opens, click the Confirm button. The ID Center user login information popup window will open.
  2. ID Center check the user login information, then click the confirm button.
ClassificationDetailed Description
Access Portal URLURL information to access the Access Portal
User NameCreated User Name
passwordthe password of the authenticated user
  • view icon to check the password
Excel DownloadDownload ID Center user login information as an Excel file
Email transmissionAn Excel file containing ID Center user login information is sent via email
  • After clicking the button, enter the email address to receive the email
Table. ID Center user login information items

Check user details

You can check and manage detailed information about the user, user groups, and account information.

To check the user details, follow the next procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.
  2. Service Home page, click the User menu. It moves to the User List page.
  3. User List page, click the username to check the detailed information. It moves to the User Details page.
  • User Details page displays basic information, and consists of Basic Information, User Group, Account tabs.

Basic Information

You can check the user’s basic information and modify the user’s description and options if necessary.

CategoryDetailed Description
Delete UserButton to delete the user
  • In the case of an AD-linked account, deletion is not possible
User NameThe user’s name
User Real NameThe user’s actual name
  • Edit button to modify the name
  • In the case of an AD-linked account, modification is not possible
DescriptionA description of the username
  • Edit button can be clicked to modify the description
Last LoginThe time when the user last logged in
PasswordPassword last changed time
  • In the case of an AD-linked account, it cannot be confirmed
  • Click the Edit button to change the password
Password reuse restrictionThe number of recently used passwords that cannot be set as a password
  • In the case of an AD-linked account, it is not possible to check
EmailEmail authentication status
  • In the case of an AD-linked account, the email information provided by AD is displayed and cannot be modified
Mobile Phone NumberMobile Phone Number Authentication Status
affiliation informationuser’s business unit, department, administrator, employee number information
  • In the case of an AD linked account, it is not possible to confirm
  • Click the Edit button to modify affiliation information
Table. User's basic information tab items

User Group

The user can check the registered user group and add or exclude the user group as needed.

Reference
User Group details can be found in User Group, please refer to it.
CategoryDetailed Description
ExclusionExclude the selected user group from the user group list
  • Enabled when one or more user groups are selected
Add user groupAdd a user group to register users
User Group NameName of the User Group
descriptiondescription of the user group
Revision TimeThe time when the user group was revised
Fig. User's user group tab items

Account

You can check the Account assigned to the user and add a set of permissions or assign an Account as needed.

Note
ClassificationDetailed Description
Add permission setAdd a new permission set to the Account
  • Activated when selecting an Account from the Account list
View more > Exclude all direct applicationsExclude all permission sets directly applied to the Account
  • If all permission sets are excluded, the Account assignment is cancelled
Account assignmentAssign a new account to the user
Account nameAccount’s name
Set of permissionsNumber of sets of permissions applied to the Account
  • If you place the mouse cursor on the set of permissions, a popup opens that allows you to exclude the set of permissions
Application methodMethod of applying the set of privileges to the Account
  • Direct: Policies directly linked to the Account
  • Group: Policies linked through user groups
Fig. User's Account tab items

Change password

You can change the user’s password.

To change the user’s password, follow the following procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.
  2. Service Home page, click the User menu. It moves to the User List page.
  3. User List page, click the username to change the password. It moves to the User Details page.
  4. User Details page, click the Password item’s Edit button. The Password Reset popup window opens.
  5. Password Reset popup window, set the password, then click the Confirm button. ID Center User Login Information popup window will open.
  • Auto Generation: Automatically generate a password
  • Direct Input: Refer to the password creation rules and enter directly
Password Creation Rules
  • Uppercase letters (English), lowercase letters (English), numbers, special characters (! @ # $ % & * ^) must each be included at least once.
  • The length is 9~20 characters.
  • ID or username cannot be used as a password.
  • The same character cannot be used three times or more.
  • Easily guessable passwords cannot be used.
  • Recently used passwords cannot be used.
  • 4 characters or more of continuous characters/numbers cannot be used.
  • The password change cycle is 90 days.
  1. ID Center user login information popup window, check the user information after, confirm button click.
ClassificationDetailed Description
Access Portal URLURL information to access the Access Portal
User NameCreated User Name
passwordthe password of the authenticated user
  • view icon to check the password
Excel DownloadDownload ID Center user login information as an Excel file
Email transmissionAn Excel file containing ID Center user login information is sent via email
  • After clicking the button, enter the email address to receive the email
Table. ID Center user login information items

Add user group

You can add a new user group.

To add a user group, follow the following procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.

  2. Service Home page, click the User menu. It moves to the User List page.

  3. User List page, click the username to add to the user group. It moves to the User Details page.

  4. User Details page, click the User Group tab. The user group list will be displayed.

  5. Add User Group button will be clicked. It moves to the Add User Group page.

  6. Add User Group page, select the user group to be added from the user group list, and then click the Complete button.

    Classification
    Necessity
    Detailed Description
    Added user group-Name of the user group that the user was added to
    User GroupRequiredSelect a user group to add users to
    • If selected, add to Added User Group item
    Table. Items to Add User Group

  7. When the popup window notifying the addition of a user group opens, click the Confirm button.

Add permission set

You can add a set of permissions to the Account.

To add a set of permissions to the Account, follow the following procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.

  2. Service Home page, click the User menu. It moves to the User List page.

  3. User List page, click the username to add the permission set. It moves to the User Details page.

  4. User Details page, click the Account tab. The list of accounts will be displayed.

  5. Select the Account to add a set of permissions from the Account list, then click the Add Permission Set button. It moves to the Add Permission Set page.

  6. Add Permission Set page’s permission set list, select the permission set you want to add, then click the Complete button.

    Classification
    Necessity
    Detailed Description
    Selected Account-Account name to add permission set
    Applied permission set-Name of the permission set applied to the selected Account
    Permission SetRequiredSelect one or more permission sets to apply to the Account
    • When selected, add to the Applied Permission Set item
    Table. Adding Permission Set Items

  7. When the popup window notifying the addition of the authority set opens, click the Confirm button.

Account assignment

You can assign a new Account to the user.

To assign a new Account, follow the next procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.
  2. Service Home page, click the User menu. It moves to the User List page.
  3. User List page, click the username to assign the Account. It moves to the User Details page.
  4. User Details page, click the Account tab. The list of accounts will be displayed.
  5. Account Assignment 버튼을 클릭하세요. Account Assignment 페이지로 이동합니다.
  6. Account assignment page where you assign the account to be assigned and the set of privileges to be applied to the account, click the Complete button.
    Classification
    Mandatory
    Detailed Description
    Account SelectionRequiredSelect the Account to be assigned to the user
    • Hierarchical Structure View: Display Accounts in the form of the organization’s hierarchical structure
    • Account List View: Display Accounts in a list format
    Permission Set SelectionRequiredSelect the permission set to be applied to the selected Account
    Table. Assigning User Account Items
Notice
If there is no IAM policy name that matches the custom policy name of the selected permission set, you cannot assign an Account.
  1. Account 할당을 사용자 그룹 추가를 알리는 팝업창이 열리면 확인 버튼을 클릭하세요 -> 7. When the popup window notifying the addition of a user group to the account allocation opens, click the Confirm button.

Delete user

To delete a user, follow the following procedure.

  1. All services > Management > ID Center menu is clicked. It moves to the Service Home page of ID Center.
  2. Service Home page, click the User menu. It moves to the User List page.
  3. Select one or more users to delete from the user list.
  4. After confirming the selected users, click the delete button.
  • You can also delete them individually from the user details page of the user to be deleted.
  1. When a popup window notifying user deletion opens, click the Confirm button.

2.2 - ID Center User Group Management

ID Center’s user group can be checked and managed.

Create a user group

You can create a user group and add it to the ID Center.

To create a user group, follow the following procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.

  2. Service Home page, click the User Group menu. It moves to the User Group List page.

  3. User Group List page, click the Create User Group button. Move to the Create User Group page.

  4. Create User Group page, enter the basic information and additional information, then click the Complete button.

    Classification
    Necessity
    Detailed Description
    User Group NameRequiredEnter the name of the user group
    • Use English letters, numbers, and special characters (+=-_@,.) to enter within 3-30 characters
    DescriptionSelectEnter a description of the user group within 1,000 characters
    Add UserSelectSelect a user to add to the user group
    • Displays a list of users registered in the account
    • If there are no users to add when linked to AD, add the user from the AD provider and proceed with synchronization on the ID Center Settings > Credential Source page
    Table. User Group Creation Information

  5. When the popup window notifying the addition of a user group opens, click the Confirm button.

Check user group detailed information

You can check and manage detailed information about the user group and user group, account information.

To check the user group details, follow the following procedure.

  1. All services > Management > ID Center menu is clicked. It moves to the Service Home page of ID Center.
  2. Service Home page, click the User Group menu. It moves to the User Group List page.
  3. User Group List page, click the user group name to check the detailed information. It moves to the User Group Details page.
  • User Group Details page displays basic information, and consists of Basic Information, User, Account tabs.

Basic Information

You can check the basic information of the user group and modify the description and options of the user group if necessary.

ClassificationDetailed Description
Delete user groupA button to delete the user group
User Group NameThe name of the user group
User Group IDThe ID of the user group
CreatorThe user who created the service
Creation TimeThe time when the service was created
EditorUser who modified the service information
Revision TimeTime when service information was revised
User Group NameThe name of the user group
  • Edit button can be clicked to modify the name
DescriptionA description of the user group name
  • Edit button can be clicked to modify the description
Table. Basic information tab items of user group

User

You can check the users registered in the user group and add or exclude users as needed.

Reference
User details can be found in the User guide.
ClassificationDetailed Description
ExclusionExcludes the user selected from the user list
  • Activated when one or more users are selected
Add UserAdd a user group to be registered in the user group
UsernameUser’s Name
User GroupNumber of user groups the user is registered to
Creation TimeThe time when the user was created
Table. User tab items of the user group

Account

You can check the Account assigned to the user and add a set of permissions or assign an Account as needed.

Reference
ClassificationDetailed Description
Add permission setAdd a new permission set to the Account
  • Activated when selecting an Account from the Account list
More > Cancel AssignmentCancel the assignment of the selected Account
  • If all permission sets are excluded, the account assignment is automatically canceled
Account assignmentAssign a new Account to the user group
Account nameAccount’s name
Permission SetNumber of permission sets applied to the Account
  • When you place the mouse cursor on the permission set, a popup opens to exclude the permission set
Table. Account tab items of the user group

Add User

You can add a new user to the user group.

To add a user, follow the following procedure.

  1. All services > Management > ID Center menu is clicked. It moves to the Service Home page of ID Center.

  2. Service Home page, click the User Group menu. It moves to the User Group List page.

  3. User Group List page, click the user group name to add a user, it will move to the User Group Details page.

  4. User Group Details page, click the User tab. The user list will be displayed.

  5. Add User button should be clicked. It moves to the Add User page.

  6. Add User page’s user list, select the user you want to add, then click the Complete button.

    Classification
    Mandatory
    Detailed Description
    Added User-Name of the user group to which the user is added
    UserRequiredList of user groups to which no users have been added
    • Display the list of users registered in the account
    • When selected, add to the added user item
    • If there are no users to add when linked to AD, add the user from the AD provider and proceed with synchronization on the ID Center Settings > Credential Source page
    Table. Add User Items

  7. Check if the added user has been added to the list.

Add permission set

You can add a set of permissions to the Account.

To add a set of permissions to an Account, follow these procedures.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.

  2. Service Home page, click the User Group menu. It moves to the User Group List page.

  3. User Group List page, click the user group name to add the permission set. It moves to the User Group Details page.

  4. User Group Details page, click the Account tab. The account list will be displayed.

  5. Select the Account to add a set of permissions from the Account list, then click the Add Permission Set button. It moves to the Add Permission Set page.

  6. Add Permission Set page, select the permission set you want to add from the list of permission sets, and then click the Complete button.

    Classification
    Mandatory
    Detailed Description
    Selected Account-Account name to add permission set
    Applied permission set-Name of the permission set applied to the selected Account
    Permission SetRequiredSelect one or more permission sets to apply to the Account
    • When selected, add to the Applied Permission Set item
    Table. Adding Permission Set Items

  7. Please check if the added set of permissions has been applied to the Account.

Account assignment

You can assign a new account to the user group.

To assign a new Account, follow the next procedure.

  1. All services > Management > ID Center menu is clicked. It moves to the Service Home page of ID Center.
  2. Service Home page, click the User Group menu. It moves to the User Group List page.
  3. User Group List page, click the user group name to assign to the Account. It moves to the User Group Details page.
  4. User Group Details page, click the Account tab. The account list will be displayed.
  5. Account Assignment 버튼을 클릭하세요. Account Assignment 페이지로 이동합니다.
  6. Account assignment page where you assign an account and select a set of permissions to be applied to the account, click the Complete button.
    Classification
    Necessity
    Detailed Description
    Account SelectionRequiredSelect the Account to be assigned to the user group
    • Hierarchical View: Display Accounts in the form of the organization’s hierarchical structure
    • Account List View: Display Accounts in the form of a list
    Permission Set SelectionRequiredSelect the permission set to be applied to the selected Account
    Table. Assigning Account Items
Notice
If there is no IAM policy name that matches the custom policy name of the selected permission set, you cannot assign an Account.
  1. Check if the added Account has been assigned to the user.

Delete user group

To delete a user group, follow the following procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.
  2. Service Home page, click the User Group menu. It moves to the User Group List page.
  3. Select one or more user groups to delete from the user group list.
  4. After verifying the selected user group, click the Delete User Group button.
  • You can also delete them individually from the User Group Details page of the user group to be deleted.
  1. When a pop-up window notifying the deletion of the user group opens, click the Confirm button.

2.3 - ID Center Account assignment

ID Center’s Account can be checked and assigned to a user or a user group.

Account assignment

You can assign an Account to a user or a user group.

To assign an Account, follow the following procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.
  2. Service Home page, click the Account assignment menu. It moves to the Account list page.
  3. Account list page, select the account to be assigned, and then click the Assign to user or group button. It moves to the Assign to user or group page.
  4. Assign to user or group page’s Select assignment target area, select the assignment target, then click the Next button.
  • You must select at least one user or user group to assign to the Account.
    Classification
    Necessity
    Detailed Description
    Account to Assign-Name of the Account to assign to a user or a group of users
    UserSelectSelect the user to assign the Account to
    User GroupSelectSelect the user group to assign the Account
    Table. Selecting account allocation target items
  1. Permission Set Selection area, select the permission set to be applied to the Account, and then click the Next button.

    Classification
    Mandatory
    Detailed Description
    Account to Assign-Name of the Account to assign to a user or a group of users
    Permission SetRequiredSelect one or more permission sets to apply to the Account
    Table. Account Permission Set Selection Items

  2. Input Information Confirmation area, check the assignment target and authority set, then click the Complete button.

  3. Account allocation notification popup window opens, click the Confirm button.

Account detailed information check

You can check and manage detailed information about the account, the target to be assigned, and the set of authorities.

To check the detailed information of the Account, follow the next procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.
  2. Service Home page, click the Account assignment menu. It moves to the Account information page.
  3. Account information 페이지에서 상세 정보를 확인할 Account를 클릭하세요. Account details 페이지로 이동합니다.
  • Account Details page displays basic information, and consists of Basic Information, Assignment Targets, Permission Sets tabs.

Basic Information

Account’s basic information can be checked.

ClassificationDetailed Description
Account nameAccount full name
Account IDAccount’s ID
CreatorThe user who created the Account
Creation TimeTime when the Account was created
EditorUser who modified the Account
Revision TimeTime when the Account was revised
Table. Account Basic Information Tab Items

Assignment Target

Account can check and manage the assigned user and user group.

Reference
User details can be found in the User guide.
ClassificationDetailed Description
Revoke AssignmentRevoke the account assignment for the selected user or user group
  • Activated when an account is selected from the account list
View more > Add permission setAdd a permission set to the selected Account
  • Activated when selecting an Account from the Account list
Assign to user or groupAssign the selected Account to a new user or user group
Assignment Target NameAssignment Target’s Name
Target TypeType of assigned target (user, user group)
Permission SetNumber of permission sets applied to the Account
  • A popup to exclude the permission set opens when the mouse cursor is placed on the permission set
Table. Account Allocation Target Tab Items

Authority Set

Account에 applied 권한 set를 확인하고 필요한 경우, 제외할 수 있습니다 becomes Account applied authority set can be checked and excluded if necessary, However the correct translation is: The set of permissions applied to the Account can be checked and excluded if necessary,

ClassificationDetailed Description
Exclusion of permission setExcludes the selected permission set from the Account
  • Activated when a permission set is selected from the permission set list
  • If all permission sets are excluded, Account assignment is automatically canceled
Permission Set NameThe name of the permission set
DescriptionDescription of the set of permissions
Revision TimeThe time the permission set was last modified
Table. Account Permission Set Tab Items

Add permission set

You can add a set of permissions to an account assigned to a user or a group of users.

To add a set of permissions to an Account, follow these procedures.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.

  2. Service Home page, click the Account assignment menu. It moves to the Account list page.

  3. Account list 페이지에서 할당할 Account를 클릭하세요. Account details 페이지로 이동합니다. -> 3. Account list page, click the Account to be assigned. It moves to the Account details page.

  4. Account details page, click the target allocation tab. The list of allocation targets will be displayed.

  5. After selecting the assignment target to which you want to add a permission set from the list of assignment targets, click the More > Add Permission Set button. It moves to the Add Permission Set page.

  6. Add Permission Set page, select the permission set you want to add from the list of permission sets, then click the Complete button.

    Classification
    Mandatory
    Detailed Description
    Assignment Target-Name of the assignment target to which the permission set is to be added
    Applied permission set-Name of the permission set applied to the selected Account
    Permission SetRequiredSelect one or more permission sets to apply to the Account
    • When selected, add to the Applied Permission Set item
    Table. Adding Permission Set Items

  7. When the popup window notifying the addition of the permission set opens, click the Confirm button.

  8. Please confirm that the added set of permissions has been applied to the Account.

Add additional assignments to a user or group

You can additionally assign an Account to new users or user groups.

To assign an Account to a new user or a group of users, follow the next procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.
  2. Service Home page, click the Account assignment menu. It moves to the Account list page.
  3. Account list 페이지에서 할당할 Account를 클릭하세요. Account details 페이지로 이동합니다. -> 3. Account list page, click the Account to be assigned. It moves to the Account details page.
  4. Account details page, click the target allocation tab.
  5. Assignment target tab, click the Assign to user or group button. Move to the Assign to user or group page.
  6. Select Target area, select the target to be assigned, then click the Next button.
  • You must select at least one user or user group to assign to the Account.
    Classification
    Necessity
    Detailed Description
    Assigned User-The current account assigned user name
    UserSelectSelect a user to assign to the Account
    • When selected, it is added to the Assigned User item
    • If there are no users to add when linked to AD, add the user from the AD provider and proceed with synchronization on the ID Center Settings > Credential Source page
    Assigned User Group-Name of the user group to which the current Account is assigned
    User GroupSelectSelect the user group to assign the Account to
    • When selected, it is added to the Assigned User Group item
    Table. Selecting Items for Account Allocation
  1. Permission Set Selection area, select the permission set to be applied to the Account, and then click the Next button.

    Classification
    Mandatory
    Detailed Description
    Permission SetRequiredSelect one or more permission sets to apply to the Account
    Table. Account Permission Set Selection Items

  2. Input Information Confirmation area, check the assignment target and authority set, then click the Complete button.

  3. Account allocation notification popup window opens, click the Confirm button.

Account assignment cancellation

To cancel the account assignment for a user or a user group, follow the following procedure.

  1. All services > Management > ID Center menu, click. It moves to the Service Home page of ID Center.
  2. Service Home page, click the Account assignment menu. It moves to the Account list page.
  3. Account list 페이지에서 할당할 Account를 클릭하세요. Account details 페이지로 이동합니다. -> 3. Account list page, click the Account to be assigned. It moves to the Account details page.
  4. Account details page, click the Target allocation tab. The list of allocation targets will be displayed.
  5. Select the assignment target to be canceled from the list of assignment targets and then click the Cancel Assignment button.
  6. Account allocation cancellation notification popup window opens, click the Confirm button.

2.4 - ID Center Permission Set Management

You can check and manage the set of permissions for the ID Center.

Create a set of permissions

You can create a set of permissions and add it to the ID Center.

To create a set of permissions, follow these steps.

  1. All services > Management > ID Center menu is clicked. It moves to the Service Home page of ID Center.
  2. On the Service Home page, click the Authority set menu. It moves to the Authority Set List page.
  3. On the Authority Set List page, click the Create Authority Set button. It moves to the Create Authority Set page.
  4. On the Create Permission Set page, in the Enter Basic Information section, enter the basic information and then click the Next button.
Classification
Necessity
Detailed Description
Permission Set NameRequiredEnter the name of the permission set
  • Use English, numbers, and special characters (+=-_@,.) to enter within 32 characters
Enter a description of the permission set within 1,000 characters
Maximum Session DurationRequiredEnter the session time allowed for the user when accessing the Console through the Access Portal
  • Time selection: 1 hour, 2 hours, 4 hours, 8 hours, 12 hours
  • Direct input: Input possible in seconds from 3,200 seconds (1 hour) to 43,200 seconds (12 hours)
Table. Permission Set Basic Information Items
  1. In the 권한 세트 설정 area, select a policy to use and set the policy, then click the 다음 button.
Classification
Necessity
Detailed Description
Default PolicyOptionalConnects the default policy provided by Samsung Cloud Platform Console
  • Use item is selected and then select the default policy to be linked to the authority set from the list
Custom PolicyOptionalLink the custom policy created under the Account
  • Use item is selected and the custom policy to be linked to the permission set is entered directly
  • If there is no IAM policy name matching the entered custom policy name in the Account, the permission set cannot be applied
Inline PolicyOptionalSet the policy to be applied to the permission set directly
  • Use item is selected and set according to the policy setting mode
  • JSON Mode: Set directly using the JSON Editor
Table. Permission Set Setting Items
Notice
The permission set can have up to 20 policies linked to it, which is the sum of the default policies and custom policies.
  1. In the 입력 정보 확인 area, check the basic information and permission policies of the permission set, and then click the 완료 button.
  2. When the popup window for creating a set of permissions opens, click the Confirm button.

Check details of permission set

You can check and manage detailed information about the permission set, user group, and account information.

To view detailed information about a set of permissions, follow these steps.

  1. Click all services > Management > ID Center menu. It moves to the Service Home page of ID Center.
  2. On the Service Home page, click the 권한 세트 menu. It moves to the 권한 세트 목록 page.
  3. On the Authority Set List page, click the authority set to view detailed information. It moves to the Authority Set Details page.
    • Authority Set Details page displays basic information and consists of Basic Information, Authority, Account tabs.

Basic Information

You can check and modify the basic information of the permission set.

ClassificationDetailed Description
Permission Set DeleteButton to delete the permission set
ServiceService Name
Resource TypeResource Type
SRNUnique resource ID in Samsung Cloud Platform
Resource NameResource Name
  • In policies, it means policy name
Resource IDUnique Resource ID
CreatorUser who created the service
Creation TimeTime when the service was created
ModifierUser who modified the service information
Modified TimeTime when service information was modified
Permission Set NamePolicy Name
Maximum session persistence timeThe session time allowed for users when accessing the Console through the Access Portal
  • Modify button can be clicked to change the persistence time
    • Time selection: 1 hour, 2 hours, 4 hours, 8 hours, 12 hours
    • Direct input: possible to input in seconds from 3,200 seconds (1 hour) to 43,200 seconds (12 hours)
DescriptionDescription of policy name
  • Edit button can be clicked to modify the description
Table. Basic information tab items of the authority set

Authority

You can view and manage policies attached to a set of permissions.

ClassificationDetailed Description
Default PolicyThe default policy linked to the set of permissions
  • After selecting a policy from the default policy list, you can disconnect by clicking the Disconnect button
  • New default policy can be linked by clicking the Link Policy button
User-defined policyUser-defined policies linked to the authority set
  • It is possible to disconnect by selecting a policy from the user-defined policy list and clicking the Disconnect button
  • New user-defined policies can be linked by clicking the Policy Link button
Inline PolicyService name of inline policy connected to the authority set
  • Delete button can be clicked to delete the connected inline policy
  • Policy Edit button can be clicked to modify the inline policy
  • If there is no connected inline policy, the Policy Create button can be clicked to create one
Table. Authority information items of the authority set

Account

You can check and modify the account information of the authority set.

ClassificationDetailed Description
Account nameAccount Name
Account IDAccount ID
EmailAccount’s Email
Table. Account tab items of the permission set

Connect Basic Policy

You can attach a new default policy to the set of permissions.

To link a basic policy, follow these procedures.

  1. Click on 모든 서비스 > Management > ID Center menu. It moves to the Service Home page of ID Center.
  2. On the Service Home page, click the 권한 세트 menu. It moves to the 권한 세트 목록 page.
  3. On the Authority Set List page, click the authority set to link to the basic policy. It moves to the Authority Set Details page.
  4. Authority Set Details page, click the Authority tab.
  5. Click the Policy Link button in the Basic Policy area. It moves to the Basic Policy Link page.
  6. On the Basic Policy Linkage page, select the policy you want to link from the list of basic policies, and then click the Complete button.
Classification
Necessity
Detailed Description
Connected Base Policy-Name of the base policy connected to the authority set
Default Policy LinkRequiredSelect the default policy to link to the authority set
  • If selected, it will be added to the Linked Default Policy item
Fig. Attaching a Default Policy to a Permission Set Item
  1. When the policy connection notification popup window opens, click the Confirm button.

Connect custom policies

You can attach a new custom policy to a set of permissions.

To link a custom policy, follow these steps.

  1. Click all services > Management > ID Center menu. It moves to the Service Home page of ID Center.
  2. On the Service Home page, click the Authority Set menu. It moves to the Authority Set page.
  3. On the Authority Set List page, click the authority set to which you want to attach a custom policy. It moves to the Authority Set Details page.
  4. Authority Set Details page, click the Authority tab.
  5. Click the Policy Link button in the Custom Policy area. It moves to the Custom Policy Link page.
  6. Custom Policy Connection page, select the policy you want to connect from the list of custom policies, and then click the Complete button.
Classification
Necessity
Detailed Description
Connected User-Defined Policy-Default Policy Name Connected to the Authority Set
User-defined policy linkingRequiredEnter the user-defined policy to be linked to the permission set directly
  • When selected, add to the Linked User-Defined Policy item
  • Click the Add button to enter additional user-defined policies to be linked
Table. Items for attaching custom policies to permission sets
  1. When the policy connection notification popup window opens, click the Confirm button.

Creating an inline policy

You can modify the inline policies attached to a set of permissions.

To modify the in-line policy, follow the next procedure.

  1. Click all services > Management > ID Center menu. It moves to the Service Home page of ID Center.
  2. On the Service Home page, click the Authority Set menu. It moves to the Authority Set List page.
  3. On the Authority Set List page, click the authority set you want to modify the in-line policy for. It moves to the Authority Set Details page.
  4. Authority Set Details page, click the Authority tab.
  5. In the 인라인 정책 area, click the 정책 생성 button. This will take you to the 인라인 정책 생성 page.
  6. On the 인라인 정책 생성 page, in the 권한 설정 section, select the policy setting method and the service to apply, then click the 다음 button.
Classification
Necessity
Detailed Description
Basic Mode/JSON ModeRequiredSelect the policy setting method
  • Basic Mode: Use the mode provided by the Console to set
  • JSON Mode: Set directly using the JSON Editor
ServiceRequiredSelect the service to set the policy
  • Add Service: Add a service to set the policy
Table. Inline Policy Creation - Service Settings
Caution

In policy settings, we provide default mode and JSON mode.

  • When entering JSON mode or moving the screen after writing in basic mode, services with duplicated control requirements are integrated into one, and services with incomplete settings are deleted.
  • JSON mode where the contents written in does not match the JSON format can not be converted to default mode.
  1. After setting the permissions, click the Next button.
Classification
Necessity
Detailed Description
Control TypeRequiredPolicy Control Type Selection
  • Allow Policy: a policy that allows defined permissions
  • Deny Policy: a policy that denies defined permissions
Deny policy is applied first for the same target
ActionRequiredSelect actions provided by each service
  • Actions that allow individual resource selection are displayed in purple
  • Actions that target all resources are displayed in black
  • Add Action Directly: You can specify multiple actions at once using the Wildcard *
Applied ResourceRequiredResource to which the action is applied
  • All Resources: Apply to all resources for the selected action
  • Individual Resource: Apply only to the specified resource for the selected action
    • Individual resources are only possible when selecting individual resources in purple actions
    • Click the Add Resource button to specify the target resource by resource type
Authentication TypeRequiredAuthentication method for the target users to apply the policy
  • All Authentication: Applies regardless of the authentication method
  • API Key Authentication: Applies to users who use API key authentication
  • Temporary Key Authentication, Console Login: Applies to users who use temporary key authentication or console login
Applied IPRequiredIP that allows policy application
  • Custom IP: IP registered and managed directly by the user
    • Applied IP: IP registered directly by the user, to which control policies are applied, and can be registered in IP address or range format
    • Excluded IP: IP to be excluded from Applied IP, which can be registered in IP address or range format
  • All IP: No IP access restriction
    • All IPs are allowed access, but if exceptions are needed, Excluded IP can be registered to restrict access to registered IPs
Additional ConditionsOptionalAdd conditions for Attribute-Based Access Control (ABAC)
  • Condition Key: Select from Global condition key and service condition key list
  • Qualifier: Default, Any value in request, All values in request
  • Operator: Bool, Null
  • Value: True, False
Table. Policy Creation - Permission Setting
  1. Check Input Information page, check the entered information and click the Complete button.
  2. If the policy modification notification popup window opens, click the Confirm button.

Registering individual resources as applied resources

You can register individual resources as applied resources when setting permissions.

To register individual resources as applied resources, follow the next procedure.

  1. Select an action where individual resources can be selected from the action options.
  • Actions that allow individual resource selection are displayed in purple.
  1. Applied Resource에서 Individual Resource을 클릭하세요.
  2. Click the Add Resource button. The Add Resource popup window will open.
Classification
Necessity
Detailed Description
Free TypeRequiredSelect the type of resource to add
SRN-Unique resource ID in Samsung Cloud Platform
  • Automatically updated based on the input items below
AccountRequiredAccount ID setting
  • Current Account: Current Account ID is automatically entered and cannot be modified
  • All Accounts: Added to all accounts (not recommended)
  • Direct Input: Account ID is directly entered using English lowercase letters and numbers within 100 characters (Wildcard input is not allowed)
RegionSelectDirectly enter the region information of the resource within 100 characters
  • Select All checks to add resources from all regions
Resource IDRequiredDirectly enter the resource ID to be added within 100 characters
  • Select All If checked, all resources of the corresponding resource type are added
Fig. Policy Creation - Registering Individual Resources as Applied Resources

Delete permission set

Notice
If a set of permissions is applied to an Account, it cannot be deleted.

To delete a set of permissions, follow these steps.

  1. All services > Management > ID Center menu is clicked. It moves to the Service Home page of ID Center.
  2. On the Service Home page, click the 권한 세트 menu. It moves to the 권한 세트 목록 page.
  3. Select one or more authorization sets to delete from the authorization set list.
  4. After confirming the selected set of permissions, click the Delete button. You can also delete them individually from the Delete permission set’s Permission set details page.
  5. When the popup window notifying the deletion of the permission set opens, click the Confirm button.

2.5 - ID Center Access Portal use

Access Portal을 통해 Account 자원에 접근하고 이용할 수 있습니다. -> Access Portal through which you can access and use Account resources.

Notice
  • To use Access Portal, you must be registered as a user in the ID Center of the Samsung Cloud Platform Console.
  • For more information about user registration, please refer to Create User.

Access Portal first access

Access Portal에 처음으로 접속할 때에는 서비스 요청을 통해 Access Portal 접속 URL을 신청한 후, 로그인해야 합니다. -> When accessing the Access Portal for the first time, you must apply for the Access Portal access URL through a service request and then log in.

Access Portal connection URL application

Samsung Cloud Platform Console에서 service request을 통해 Access Portal 접속 URL을 신청할 수 있습니다 should be translated to: Samsung Cloud Platform Console where you can apply for Access Portal access URL through a service request.

Access Portal connection URL을 신청하려면 is translated to: To apply for Access Portal connection URL, please follow the next procedure: becomes To apply for Access Portal connection URL, please follow the next procedure, so the translation is: To apply for Access Portal connection URL, please follow the next procedure.

  1. All services > management > ID Center menu, click. It moves to the Service Home page of ID Center.

  2. Service Home page, click the ID Center settings button. It moves to the ID Center settings page.

  3. Access Portal URL item, click the URL application button. It moves to the service request page of the Support Center.

    Classification
    Necessity
    Detailed Description
    titlerequiredTitle for Access Portal URL application
    • Use Hangul, English, numbers, and special characters (+=,.@-_) to enter within 64 characters
    RegionRequiredSelect a region to apply for Access Portal URL
    ServiceRequiredManagement service group’s ID Center service selection
    Task ClassificationRequiredApply for Access Portal URL Optional
    ContentRequiredInformation input for Access Portal URL application
    Table. Access Portal URL Request Items

  4. Check the input information and click the request button.

Notice
  • After requesting the service, you cannot modify or delete the written content.
  • After requesting a service, you can check the details of the request on the Service Request List page of the Support Center. Please refer to Checking Service Request Details for more information.

Access Portal Initial Login

Access Portal for the first time, please follow the following procedure.

  1. 로그인 페이지에서 사용자명비밀번호를 입력하세요. -> 1. On the login page, enter your username and password.
Notice
Username and Password information, please contact the ID Center administrator.
  1. Select a means to send the authentication number, and click the Send Authentication Number button.

  2. Enter the received authentication number and click the next button. A pop-up window for multi-authentication (MFA) self-authentication will open.

  3. Multi-factor authentication (MFA) for self-identification In the popup window for MFA self-identification, complete the personal information input and terms confirmation for MFA, then click the Confirm button. The Password Change popup window will open.

    Item
    Mandatory
    Description
    Automatic input preventionRequiredEnter the characters output in the image into the input window and click the Confirm button
    Mobile phone numberRequiredEnter mobile phone number
    • Enter the mobile phone number and click the authentication button to issue an authentication number
    • Enter the authentication number issued to your mobile phone and click the confirm button
    • If the authentication number is valid, the identity verification is complete
    EmailRequiredEnter the email to be used for self-authentication within 60 characters
    • For accounts linked to the AD type as the authentication source, select Provide email information registered on the AD side as Read-Only
    RegionRequiredRegion selection for personal information collection
    Personal information collection and useRequiredAfter checking the terms and conditions for personal information collection and use, check I agree
    Table. Self-authentication items for multi-factor authentication (MFA)

  4. Password Change popup window, enter the password change information and click the Confirm button. The Access Portal Terms of Service popup window will open.

    Item
    Mandatory
    Description
    Existing passwordRequiredEnter the password received from the ID Center administrator
    New PasswordRequiredEnter directly referring to the password creation rules
    Password ConfirmationRequiredRe-enter the password to use
    Table. Password Change Items

Password Creation Rules
  • Uppercase letters (English), lowercase letters (English), numbers, special characters (! @ # $ % & * ^) must each be included at least once.
  • The length is 9~20 characters.
  • ID or username cannot be used as a password.
  • The same character cannot be used three times or more.
  • Easily guessable passwords cannot be used.
  • Recently used passwords cannot be used.
  • 4 characters or more of consecutive characters/numbers cannot be used.
  • The password change cycle is 90 days.
  1. Access Portal terms of use after confirmation, confirm button click. Access Portal page to move.

Access Portal Login

Guidance
  • If you are accessing the Access Portal for the first time, refer to Access Portal initial access to apply for the Access Portal URL first, and then log in.

Access Portal에 로그인하려면 다음 절차를 따르세요. -> To log in to Access Portal, follow the following procedure:

  1. Enter the Access Portal connection URL received through the service request in the browser’s address input window. It moves to the Access Portal login page.
  2. 로그인 페이지에서 사용자명비밀번호를 입력하세요. -> 2. On the login page, enter your username and password.
  3. Select a means to send the authentication number and click the next button. It moves to the authentication number confirmation page.
  • If you do not receive the authentication number or it has expired, click the Resend Authentication Number button to request the authentication number again.
  1. Enter the received authentication number and click the 로그인 button, which translates to enter the received authentication number and click the login button, you will be moved to the Access Portal page.
ID/Password Find
  • ID or password is lost, in the case of password find button, click, Access Portal registered email or phone number to change using available.
  • Accounts linked to AD type certification source have password retrieval restricted, please contact the ID Center administrator.
Caution
  • Please enter your password and authentication number correctly. If you enter your password or authentication number incorrectly more than 5 times, your account will be locked for security reasons.
  • If the account is locked, it provides the user with the locked account information.

Access Portal usage

Access Portal에 로그인하면 Access Portal 페이지로 이동합니다 translates to: When you log in to Access Portal, it moves to the Access Portal page. Access Portal page is composed of Account tab and My Info tab.

Account

You can check the account and set of permissions assigned to the user and access the Samsung Cloud Platform Console with the account’s set of permissions.
Temporary Key Issuance can be used to obtain a temporary key to access the Account.

ClassificationDetailed Description
Account listAssigned account name and ID to the user, root user email information
  • When clicking on the account name, the set of permissions applied to the account is displayed
Permission Set ListPermission set applied to Account
  • Clicking on the permission set name moves to the Samsung Cloud Platform Console page
  • Temporary Key Issuance: Issuing a temporary key that can use the Account
Table. Account tab items

My Info.

You can check the user’s basic information and modify the user’s description and options if necessary.

ClassificationDetailed Description
User NameThe user’s name
EmailEmail to be used for self-authentication
  • Modify button can be clicked to change email
  • In the case of an AD-linked account, the email information provided by AD is displayed and cannot be modified
Mobile phone numberMobile phone number to use for self-authentication
  • Edit button to change email
Last LoginThe time when the user last logged in
PasswordPassword last changed time
  • In the case of an AD-linked account, it cannot be confirmed
  • Click the Edit button to change the password
  • Refer to the password creation rules when changing the password
Password Reuse RestrictionThe number of recently used passwords that cannot be set as a password
  • In the case of an AD-linked account, it cannot be checked
  • Click the Edit button to change the number
  • Up to 24 recently used passwords that cannot be set can be configured
Time ZoneUser Time Zone(Time Zone)
  • Modify button to change time zone possible
Terms and ConditionsTerms and Conditions agreement status
  • View Content item can be clicked to check the terms and conditions
Table. My Info. Tab Items
Password Generation Rules
  • Uppercase letters (English), lowercase letters (English), numbers, special characters (! @ # $ % & * ^) must each be included at least once.
  • The length is 9~20 characters.
  • ID or username cannot be used as a password.
  • You cannot use the same character three times or more.
  • Easily guessable passwords cannot be used.
  • Recently used passwords cannot be used.
  • 4 characters or more of continuous characters/numbers cannot be used.
  • The password change cycle is 90 days.

Account

You can check the account and permission set assigned to the user and access the Samsung Cloud Platform Console with the account’s permission set or receive an access token for access.

ClassificationDetailed Description
Account listAssigned account name and ID to the user, and root user email information
  • When clicking on the account name, the set of permissions applied to the account is displayed
Permission Set ListPermission set applied to Account
  • Clicking on the permission set name moves to the Samsung Cloud Platform Console page
  • Temporary Key Issuance: Issuing a temporary key that can use the Account
Table. Account Tab Items

Issue Certificate

Access Portal에서 Samsung Cloud Platform Console에 접속하기 위한 임시키를 발급받을 수 있습니다. -> Access Portal where you can obtain an API key to access the Samsung Cloud Platform Console. To receive the IMSI key, follow the next procedure.

  1. Enter the Access Portal access URL received through the service request in the browser’s address input window. It moves to the Access Portal login page.
  2. Log in to Access Portal. Access Portal page will be moved.
  3. Access Portal page, click the Account tab. It moves to the Account tab.
  4. Click the Issue License Key button of the license set for which you want to issue a license key in the license set list. A pop-up window announcing the issue of the license key will open.
  5. Check the account name, then click the Confirm button. The ID Center Issuance popup window will open.
  6. Check the issuance information, then click the Confirm button.
Caution
  • ID Center issuance popup window’s information cannot be checked again, so please be careful.
  • In case the license key issuance information is lost, the license key must be re-issued.

3 - Release Note

ID Center

2025.10.23
FEATURE AD (Active Directory) Credential Linkage Provision
  • You can choose to use AD (Active Directory) as a credential source.
  • AD (Active Directory) is used so that users can directly manage the authentication source.
2025.07.01
NEW ID Center Service Official Launch
  • ID Center service has been officially launched.
  • You can manage to perform tasks according to user permissions by creating authority policies for each service and assigning policies and accounts linked to the Organization service to users.
  • Access Portal을 통해 권한이 있는 ID Center 사용자만 접근하도록 보안을 강화할 수 있습니다 -> * Security can be enhanced to allow only authorized ID Center users to access through the Access Portal.