Group Management
Within the IAM system, groups serve to aggregate identities, facilitating streamlined management and access control. Managing groups involves several key activities:
Create a Group
Create a new group in an account. If needed, you can provide a Group ID; otherwise, it will be autogenerated. An example request for creating a group is provided below:
POST {base URL}/groups{ "name": "IAM Group", "description": "This is a sample group"}Associate members
Populate the group by adding members such as users or applications, thereby defining the group’s membership. An example request for adding a user in a group is given below:
POST {base URL}/groups/{group_id}/users{ "id": "c4cc85be-c5b1-479f-8b0b-877383c07a60"}Members from other accounts: Members added to the group can belong to any account, not just the account associated with the group. Associated members of the group can be listed.
Note: Non-Identity entities cannot be added to groups.