User/account function

[Update: December 16, 2016]

This page illustrates setup/management for User/Account login to the control panel.

1. Overview

In the SAKURA Cloud control panel, in addition to login using member ID and password,

  • a User (unit of authentication for login to the control panel) and
  • an Account (work space for resources)

can be created.

Unlike other services, such as SAKURA Rental Server and SAKURA VPS, where login to services is linked to each member ID, this function enables actual resource operation by means of User and Account used only in SAKURA Cloud.

Even when multiple operators under the same billing address (member ID) are in charge of SAKURA Cloud management, this function enables creation of separate accounts (work fields) for each service/development project employing SAKURA Cloud as well as safe management of password information, by creating a user for each person responsible for operating SAKURA Cloud.

*Billing is calculated per cloud account and a statement issued to the address registered to the member ID. Separate billing addresses cannot be set for each user.
*Authorization to operate/view billing information be set for each user. For details, please refer to the Access level function settings page.
* By setting two-factor authentication when logging in the created user, you can increase the security against unauthorized login. For details, please refer to the Settings of Two-factor authentication page.

2. Login

Attempting to access the Control panel while being unverified (while being logged out), will prompt the following login screen to appear.

From this screen you can log in to the control panel through either of the following methods: Log in as SAKURA internet Member or Log in as SAKURA Cloud User.

Log in as SAKURA internet Member

Logging in with your member ID and password will take you to the Administrator screen where the following operations can be performed.

After login, the following Administrator screen will be displayed.

The menu on the left is displayed at all times from which you can perform operations listed below by clicking the corresponding buttons. You can log out by clicking your member ID at the top right of the menu.

Service screen

By selecting the pop-up menu at the top left, you can display the Service Selection screen of any created user. It is also possible to display the Account Creation screen by selecting “Create Account …” at the bottom of the menu.

After selecting an account, you can perform operations for it by selecting corresponding buttons on the main screen.

SAKURA IaaS Proceed to the management window for cloud services, such as servers and disks.
Object storage Proceed to the object storage service control panel.
Global Proceed to the control panel of resources independent of regions and zones (such as DNS).
Simple monitoring Proceed to the simple monitoring control panel.
Web accelerator Proceed to the web accelerator control panel.
Database Proceed to the database control panel.
SendGrid Proceed to the SendGrid special plan sign-up page.
(Operated by Kozo Keikaku Engineering Inc.)
Billing information View account fees and billing information.

Account screen

On the account management screen, all accounts created under the logged-in member ID will be displayed.

Creating a new account

To create a new account, click Create Account at the top left.

You will be directed to an account creation screen where you can fill in all required fields then click Create which will be displayed on either the top or bottom of the screen.

Terms and conditions You will be required to agree to the terms and conditions for each account. Please review these carefully.
Agree (*) To agree to the terms and conditions, select I Agree to display an account information input screen below.
Name (*) Enter account name.
Account code (*) Enter a unique account code to identify individual accounts.
Whether Create User with the Same Name as the Account has been enabled will determine which form will appear. (please see below.)

*Mandatory

The following form depends on the status of the Create same name user for this account check box in the Account code setting field..

◇When checkbox is enabled

A user with the same name and full authorization of the created account will be generated simultaneously. Subsequently a password setup form for the newly-created user will be displayed..

◇When checkbox is disabled

An authorization clearance form for a created user will appear.

*For authorization details, please refer to the Access level function page.

Set/delete account

To change or delete an account, double-click the target account line on the list screen.

The Account Settings screen will appear where you modify the item(s) that you want to edit. (resource ID and account code cannot be changed.)

To delete an account, click Delete. Click Save to update the information.

*An account with resources such as a server and disk,s cannot be deleted.

User screen

On the User Management screen, all the users created within the logged-in member ID will be listed.

New user creation

To create a new user, click the Create User button on the top left.

Fill in all required fields of the User Creation screen.

Name (*) Enter a user name.
User code (*) Enter a unique user code to identify individual users.
Password (*)/
Password (retype) (*)
Set user password.
Account authorization rights Set user authorization to operate the created account.
*For authorization details, please refer to the Access Level function page.

*Mandatory

A new account will be created after you fill in all required fields then click Create which will be displayed on either the top or bottom of the screen.

Modifying/deleting a user

To modify or delete a user, double-click the target user on the User List screen.

The User Settings screen will appear where you modify the item(s) that you want to edit. (resource ID and account code cannot be changed.)

To delete an account, click Delete. Click Save to update the information.

Two-factor authentication screen

You can set and manage Two-factor authentication for the member ID you are logging in under. In addition, you can disable Two-factor authentication set for each user as well as delete trusted devices. For details, please refer to the Settings of Twho-factor authentication page.

Log in as SAKURA Cloud user

By logging in with your user code, member ID, and password, the management screen for each user will appear.

A screen similar to the member ID login will appear when you log in as a cloud user; however, items that can be operated will be limited as follows.

Account selection Only an account for which the user has authorization (viewing or higher) can be selected.
The user cannot create a new account.
Account Only an account for which the user has authorization (viewing or higher) can be modified.
The user cannot modify an account code or enable operating authorization for other users.
User Only user name and password can be modified.
The user code cannot be changed. A user cannot modify account its own operating authorization.
Two-factor authentication Setting Two-factor authentication
*For details of Two-factor authentication, please refer to the Settings of Two-factor authentication page.
Event log Event logs can be viewed.
*For details of event logs, please refer to the Event logs page.

3. Operations during login

When logged into the control panel, you can switch between accounts and return to the Home screen via the Switch Accounts and Go Back to Home buttons in the pop-up menu that appears by clicking the user section at the top right of the screen.

4. Set up Two-factor authenticatio

Two-factor authentication can be set for each user, reducing the risk of passwords being leaked to third parties or the risk of unauthorized login in the event of a brute force password attack For further instructions, please refer to the Two-factor authentication page.

Points to note when setting up Two-factor authentication

Two-factor authentication targets the user (administrator with member ID login and individually created users); therefore, please note the following variables when setting up Two-factor authenticaion in an environment of multiple users.

When Two-factor authentication has been set for User but not for Administrator

As a high level of authorization is granted to the administrator, including the authorization to login to all accounts as well as disabling of Two-factor authentication for each user, security may not be ensured even if Two-factor authentication has been set for individual users.

We, therefore, recommend setting a requirement for the administrator to undergo the same Two-factor authentication process for login as individual users.

When operating authority has been given to multiple users for Account

When multiple users are authorized to operate an account with Two-factor authentication not applied to all users, login security will be weaker for a user without Two-factor authentication. We recommend setting Two-factor authentication for all users.

5. Deleting an account (cancellation)

Accounts can be deleted (cancelled) via the control panel.

Requirements

  • Before deleting and account, Server, Disk, Switch, and NIC need to be deleted.
  • Log in to the cloud control panel via Log in as SAKURA Internet Member. Under Log in as SAKURA Cloud User, you will be unable to delete the account.

Deleting an account (cancellation)

  1. At the Cloud control panel login screen, click Account on the left menu, and then select the account to be deleted.

If the cloud Login screen does not appear, you can open the Creation screen by selecting the item as shown below.

  1. Click Delete.
  1. An operation confirmation screen will appear. Click Delete.

Attention

If Server, Disk, Switch, or NIC is left in the target account, an error alert will appear.

■Example error message