/images/resources/howtos/devops-dashboard.png

DevOps Dashboard

On this page

The Curity Identity Server provides a DevOps Dashboard. One of its main features is to enable employees to manage your customer users, who login to your apps. More generally it enables large organizations to provide teams with limited privileges to administer the identity and access management (IAM) system. This can be done without exposing full administration capabilities. See the DevOps dashboard webinar for a video overview.

User Management

One of the main features of the dashboard is to administer user accounts from a data source. This provides a fast way to precreate application users when getting started with the Curity Identity Server, or in scenarios where end users cannot register themselves:

Users List

In the following example, a DevOps employee called johndoe is administering a customer user called alice:

User Edit

Employee Authorization via Groups

When granting access to employees, categorize them into groups based on the levels of access you want to grant. In the following screenshot, members of the developers group are given limited privileges, to only access OAuth clients:

Developer Permissions

Developer Access

A member of the developers group can then read or edit clients, and work with scopes and claims, depending on the permissions granted. The dashboard also provides a simplified wizard for creating OAuth clients in a developer focused manner:

New SPA Client

Scalable Authorization

Permissions can be granted in a manner that scales up to departmental boundaries, or down to individual clients. This enables larger organizations to distribute access based on levels of experience or trust:

Fine Grained Permissions

If an employee has insufficient permissions, and the data shown is sensitive, then permission will be denied:

Access Denied

In other cases, the user may be able to attempt an edit, such as creating a new scope, and will receive a forbidden error upon trying to save:

Forbidden Error

Operational Troubleshooting

In the event of temporary problems, you can enable multiple teams to help diagnose the cause. The alarms feature provides problem details, and in some cases, the teams who work on the applications impacted may be best able to advise on resolution actions:

Dashboard Alarm

Conclusion

The DevOps dashboard provides additional administration options for the Curity Identity Server. Use it to administer your end users, or to distribute your security management. To get started using the dashboard, follow the DevOps Dashboard User Administration tutorial.