The page has been translated by Gen AI.

How-to guides

The user can enter the required information of ID Center through the Samsung Cloud Platform Console, select detailed options, and create the service.

ID Center Create

You can create and use an ID Center in the Samsung Cloud Platform Console.

Guide

ID Center can only be managed in the region where the ID Center was created.

Reference

Only the Organization’s Management Account can create an ID Center.

To create an ID Center, follow the steps below.

Click the All Services > Management > ID Center menu. Go to the Service Home page of ID Center.
Click the ID Center Application button on the Service Home page. Navigate to the ID Center Creation page.

ID Center creation page, after entering the basic information, click the Complete button.

Category	Required	Detailed description
ID Center name	Required	Enter the name of the ID Center Enter using English letters, numbers, special characters (`+=-_@,.`) within 3~128 characters
Description	Select	Enter a description of the organizational unit within 1,000 characters
Credential Source	Required	Select Credential Source Type ID Center’s own directory: Use directory within ID Center AD (Active Directory): Use Active Directory managed directly by the user For detailed information on settings when selected, refer to Change Credential Source Type Automatically synchronize AD information upon creation

Category	Detailed description
ID Center Information	Displays the name, ID, and Access Portal URL of the ID Center Clicking the ID Center Information item navigates to the ID Center Settings page where detailed ID Center information can be viewed
User	Number of users created in ID Center Clicking the user count moves to the User List page Clicking the Create item moves to the User Creation page. Create User refer
User Group	Number of user groups created in ID Center Clicking the group count moves to the User Group List page Clicking the Create item moves to the User Group Creation page. See Create User Group
Permission Set	Number of permission sets created in ID Center Click the number of permission sets to go to the Permission Set List page Click the Add item to go to the Create Permission Set page. Create Permission Set see

ID Center Check detailed information

You can view detailed information of the ID Center and manage permissions.

To view detailed information of the ID Center and manage permissions, follow the steps below.

All Services > Management > ID Center Click the menu. Navigate to ID Center’s Service Home page.
Service Home page, click the ID Center Settings menu. Navigate to the ID Center Settings page.

Category	Detailed description
ID Center Delete	Button to delete ID Center Not displayed on delegated accounts
service	service name
Resource Type	Resource Type
SRN	Unique resource ID in Samsung Cloud Platform
Resource Name	Resource Name
Resource ID	Unique resource ID in the service
Creator	User who created the service
Creation time	Time the service was created
Editor	User who modified the service information
Modification Date and Time	Date and time when service information was edited
ID Center name	ID Center name Edit Click the button to change usage
Region	Region that created the ID Center
Description	Description of ID Center By clicking the Edit button, you can change the usage status
Organization ID	Organization’s ID
Credential Source	Type of Credential Source Edit Click the button to change the credential source type ID Center’s own directory: Directory within ID Center AD (Active Directory): Active Directory managed directly by the user AD Reset: Reset AD Information A popup opens, allowing AD information to be edited For detailed information on settings, refer to Change Credential Source Type After reset is complete, synchronization proceeds Synchronization: Synchronize with AD
Access Portal URL	URL to access the Access Portal
Delegated Authority	Display Account Name, Account ID, Email, Delegation Date/Time information of the Account that delegated ID Center management authority For delegated Accounts, the managing Account’s information is displayed and delegation or cancellation is not possible Permission Delegation: Permission can be delegated to an Account within ID Center Displayed when there is no delegation information When the button is clicked, you can select an Account on the Permission Delegation page to set delegation For details, see Permission Delegation Cancel Permission Delegation: Cancel permission delegation

Table. ID Center configuration items

Managing Credential Sources

You can change the credential source type or change and manage the setting values of the AD (Active Directory) type.

AD (Active Directory) Apply for Integration

To use a user-managed AD (Active Directory) integration, you must first prepare the VPC and Load Balancer, then submit a request via SR. To apply for AD integration, follow the steps below.

Secure a VPC to integrate with the user’s AD.
- If network connection is required, connect to the network where the user’s AD exists via the Direct Connect service.
- For more details, refer to Create Direct Connect.
Configure the Load Balancer.
1. Create a Load Balancer and an LB server group.
2. Add the IP to be linked with AD as a member of the connected resources of the LB server group.
3. Create a Listener from the connected resources of the Load Balancer and connect the LB server group.
  Guide
  - Through the Load Balancer service, call information for AD synchronization from ID Center can pass through the user’s VPC to call the user’s AD.
  - For detailed information on creating and using the Load Balancer service, please refer to Using Load Balancer Service.
Configure the PrivateLink Service in the user’s VPC.
1. Create the PrivateLink Service of the user VPC that will be called from ID Center.
2. When creating a PrivateLink Service, select the Load Balancer created in step 2 as the connection resource.
When the preparation work is finished, click the All Services > Management > Support Center menu. Move to the Service Home page.
From the Service Home page, click the Service Request menu. Navigate to the Service Request List page.

Click the Service Request button on the Service Request List page.

Select and enter the information required for the service request.

Category	Required	Detailed description
Title	Required	Title for service request Enter within 64 characters using Korean, English, numbers, special characters (`+=,.@-_`)
Region	Required	Select the region to request the service
Service	Required	Management service group’s ID Center service selection
Work Category	Required	ID Center AD Integration Request Optional
Content	Required	Information input for ID Center AD linkage application

Table. ID Center AD Integration Application Items

Check the input information and click the Request button.
- When creation is complete, check on the Service Request List page.

Notice

After requesting the service, you cannot edit or delete the content you wrote.

Change Credential Source Type

You can change the credential source or modify the settings.

Caution

If you change the credential source, all configuration information and resources such as previously set users, user groups, account assignments, and permission sets will be deleted.

Follow the steps below to change the credential source type.

All Services > Management > ID Center Click the menu. Navigate to ID Center’s Service Home page.
Click the ID Center Settings menu on the Service Home page. Navigate to the ID Center Details page.
ID Center Details page, click the Edit button of the Credential Source item. Credential Source Change popup opens.
After selecting the credential source type to use, click the Confirm button. A popup window notifying the credential source change will open.

Category Detailed description

ID Center own directory

Category	Detailed description
ID Center own directory	Use directory within ID Center No separate setting items
AD (Active Directory)	Use Active Directory that the user manages directly Connection URL: Enter the LDAP server address (e.g., ldap:// or ldaps:) Bind DN: Enter the DN (Distinguished Name) of the administrator or service account used to access the LDAP server Bind credentials: Enter the password for the account corresponding to the Bind DN User DN: Enter the directory path where the user account is located (e.g., OU=Employees, OU=Accounts, DC=sub, DC=org) Username LDAP attribute: Enter the user account identifier (e.g., sAMAccountName, uid) RDN LDAP attribute: Enter the RDN (Relative Distinguished Name, the top-level attribute in the user DN) User object classes: Enter the list of LDAP classes that define user objects, separated by commas (`,`) (e.g., persion, organizationPersion, usersAMAccount)

Use directory within ID Center

No separate setting items

AD (Active Directory)

Use Active Directory that the user manages directly

Connection URL: Enter the LDAP server address (e.g., ldap:// or ldaps:)

Bind DN: Enter the DN (Distinguished Name) of the administrator or service account used to access the LDAP server

Bind credentials: Enter the password for the account corresponding to the Bind DN

User DN: Enter the directory path where the user account is located (e.g., OU=Employees, OU=Accounts, DC=sub, DC=org)

Username LDAP attribute: Enter the user account identifier (e.g., sAMAccountName, uid)

RDN LDAP attribute: Enter the RDN (Relative Distinguished Name, the top-level attribute in the user DN)

User object classes: Enter the list of LDAP classes that define user objects, separated by commas (,) (e.g., persion, organizationPersion, usersAMAccount)

Table. Credential Source Type Change Items

5. After checking the contents of the precautions when changing and checking the check box, click the Confirm button. Go to the Service Home page to start changing the credential source type. * The change time varies depending on the scale, and you can confirm it through a notification once the change is completed. * You cannot navigate to another menu page while changes are being made.

AD (Active Directory) Information Synchronization

You can synchronize AD information.

Reference

AD information is automatically synchronized daily from 0:00 to 06:00 (Asia/Seoul, GMT +09:00).
If a new AD information connection is required, click the AD Reset button to change the AD information, then synchronize.

To synchronize AD information, follow the steps below.

All Services > Management > ID Center Click the menu. Navigate to ID Center’s Service Home page.
Click the ID Center Settings menu on the Service Home page. Navigate to the ID Center Details page.
ID Center Details on the page, click the Sync button next to the sync time of the Credential Source item. The AD Information Sync popup window opens.
After checking the synchronization notification, click the Confirm button. AD information synchronization will start.
- The change time varies depending on the scale.

Manage Permissions

You can delegate the administrative rights of the ID Center to another Account, or revoke the delegated rights.

Delegating Permissions

You can delegate the management authority of the ID Center to another account.

Follow the steps below to delegate management rights to another account.

All Services > Management > ID Center Click the menu. Navigate to ID Center’s Service Home page.
Click the ID Center Settings menu on the Service Home page. Navigate to the ID Center Details page.
Click the Permission Delegation button on the ID Center Details page. You will be taken to the Permission Delegation page.
- Permission Delegation button is displayed only when there is no Account that has currently delegated authority.

Permission Delegation on the page, after selecting the account to delegate authority to, click the Complete button.

Category	Detailed description
Account name	Account name
Account ID	Account’s ID
email	Account email
Additional Date	Account creation or registration date/time in Organization
Add Type	Method of adding Account in Organization Create: Add by creating new on Add Account page Join: Add an already created Account

Table. ID Center Delegated Authority Account List

Note

When you click the View Hierarchy button, you can view the Account list in a hierarchical structure.

Cancel Delegation

You can revoke the administrative privileges of the ID Center delegated to another Account.

To cancel the delegation of administrative authority, follow the steps below.

All Services > Management > ID Center Click the menu. Navigate to the Service Home page of ID Center.
Click the ID Center Settings menu on the Service Home page. Navigate to the ID Center Details page.
Click the Cancel Delegation button on the ID Center Details page.
If a popup notifying the revocation of delegation opens, click the Confirm button.

ID Center Delete

Caution

An account delegated with the management of the ID Center cannot delete the ID Center.

Caution

When ID Center is deleted, all users, user groups, and permission sets within the ID Center are deleted, and all entries assigned to the Account are deleted.

To delete the ID Center, follow these steps.

All Services > Management > ID Center menu, click. Go to ID Center’s Service Home page.
Service Home on the page, click the ID Center 설정 menu. Navigate to the ID Center 설정 page.
ID Center Settings on the page click the ID Center Delete button. ID Center Delete popup window opens.
ID Center Delete After entering the name of the ID Center to delete in the popup window, click the Confirm button. Navigate to the Service Home page.
- ID Center deletion time varies depending on the scale, and you can confirm via notification when deletion is complete.
- While deleting the ID Center, you cannot navigate to other menu pages.

Overview

ID Center User Management