Managing user access for Sandbox

Before you begin

Before you can manage user access for IBM Cloud Sandbox, ensure that you have Administrator access to Identity and Access Management (IAM) in your IBM Cloud account. This permission level is required to invite users, assign access policies, and grant Cloud Sandbox permissions. If the required permissions are not added, you cannot provision the sandbox, and an error message will be displayed on the catalog tile.

Adding Cloud Sandbox permission to existing users to provision sandbox

To add Cloud Sandbox permission to existing users in your account, follow these steps:

1. In the IBM Cloud console, select Manage > Access (IAM).

2. In the IAM navigation menu, select Users.

3. Find the user you want to grant access to.

4. Select Access policy.

5. Add Cloud Sandbox permission.

6. Click Next.

7. Select Roles and Action and assign Administrator as the platform access to the user. Click Review.

8. Click Finish.

Creating or inviting a user and add Cloud Sandbox permission

To create or invite a new user and grant them Cloud Sandbox permission, follow these steps:

1. In the IBM Cloud console, select Manage > Access (IAM).

2. In the IAM navigation menu, select Users.

3. Click Invite users.

4. Enter the email addresses.

5. Select Access policy. Ensure that you add access policies and grant administrator-level access to the following services:

   • All Identity and Access–enabled services
   • All Account Management services
   • Cloud Sandbox

6. Click Next.

7. Select Roles and Action and assign Administrator as the platform access to the user. Click Review.

8. To add this level of access for these users, click Add. It will be added to the summary panel. You can add additional access policies if desired, or click Invite to send email invitations.

9. On the right-hand side, click Invite.

The user gets an email invitation with the link to complete the process. This will add the user in the User list and to the Sandbox provisioning page.