Abiquo 5.2

Skip to end of metadata
Go to start of metadata

Previous page: Apps Library

Next page: Pricing

The Users tab is where a Cloud Admin will define the enterprises (or cloud tenants) that can use the Abiquo cloud. For example, for an enterprise creating a private cloud the enterprises will be departments, project teams or cost centers. For a service provider the enterprises will be customers of the cloud service (including resellers).

The Cloud Admin controls which datacenters the Enterprise can access. This enables them to exert more control over the Infrastructure. And this information can be presented to the tenant so they can understand exactly where their applications and data are running.

 Click here to show/hide the task: Create an enterprise for a cloud tenant to consume cloud resources

To create an enterprise for a cloud tenant to consume cloud resources:

  1. Log in as SysAdmin
  2. From the Users pane click + to add the new enterprise
  3. Enter the enterprise Name (the Enterprise logo and theme are optional)
  4. Go to Datacenters and select a datacenter for the enterprise to use. Move the datacenter, or public cloud provider or region to the Allowed datacenters list.
  5. Click Save  

When creating a new enterprise, the Cloud Admin can define exactly how that enterprise can use the infrastructure. So while the enterprise will have a self-service experience, the Cloud Admin remains in control and defines the boundaries of what the enterprise can do.

At the heart of controlled self service are Allocation limits. These define how much of the compute, storage and networking resources the Enterprise can consume. The Cloud Admin can also exert granular control by defining allocation limits at the level of a datacenter, or even a virtual datacenter. Tenant Admins can also set limits for virtual datacenters.
The Soft Limit defines the point where the platform can issue a warning. In a self-service world this will be a decision point for the user. Do they need to request more resources, or will they look at the resources they are consuming and realize that there are environments that are no longer being used. Perhaps these can be undeployed and those resources made available for new environments.

 Click here to show/hide the task to: Create allocation limits for an enterprise

To set limits based on the business agreement with the enterprise holder:
1. Login as SysAdmin
2. Go to the Users view and select a specific enterprise
3. Edit the enterprise and select the Allocation limits tab
4. Set Hard limits to define the maximum resources that the enterprise can use to deploy virtual appliances/VMs, and set Soft limits for warning.

The platform will display a warning when the tenant reaches a Soft limit and enterprise users will not be able to deploy VMs after the tenant reaches the Hard limits. You can create an integration with the event streaming API to perform additional actions when tenants reach either limit. An example of a basic integration is an event notifier.

This can be taken a stage further and the Cloud Admin can reserve physical infrastructure for an Enterprise. Perhaps they own part of the infrastructure, or they wish to take advantage of a Cloud service but do not want to share resources with other tenants. The reserved hardware is only available to the users in the enterprise that has been allocated the reservation of the hardware.  Reserve hardware BEFORE the enterprise deploys in the cloud.

 Click here to show/hide the task: Reserve servers for a tenant

To set limits based on the business agreement with the Enterprise holder

  1. Log in as SysAdmin
  2. In Users view, select a specific enterprise
  3. Select Edit and go to Reservations
  4. Select a datacenter and rack where a server will be reserved for this enterprise
  5. Move one of the available servers to add the server to the Reserved servers list.
  6. Log in as ANY user NOT in this enterprise (note rack reserved servers should not be available).
  7. Log in as ANY user in the enterprise with the reserved server.

Within an enterprise, Admins create users with roles. Roles can have over 100 granular privileges and you can base them on the Abiquo default roles for Cloud Admin, Enterprise Admin (tenant admin), and User. The Cloud Admin can therefore delegate as much, or as little administration as they require. Or they can create roles for specific administrative functions (e.g a Network Admin). You can link Abiquo roles to those in an external directory system such as LDAP, AD, or OpenID.

An Enterprise Admin can manage configurations at the enterprise level and provide access to standard users within the enterprise. Typically, this role is assigned to users who are responsible for administration of Cloud services for a specific group. You can also create a reseller user that will manage their own customers and the associated users.

 Click here to show/hide the task: Delegate administration of the enterprise

 To create an enterprise Admin user do these steps:

  1. Log in as SysAdmin
  2. Select a specific enterprise
  3. Go to the Users pane and click + to add the new user
  4. Select the default role ENTERPRISE_ADMIN
  5. Select Global scope
  6. Go to the Advanced tab and enter user details as required
  7. Click Save

An Enterprise Admin user will be available. This user can manage template libraries and users for the enterprise.

In some environments, you may wish to create additional roles to support the desired models for system administration. You may also need to modify the access rights of existing roles. 

 Click here to show/hide the task: Create custom user roles

To create a custom user role:

  1. Login as SysAdmin
  2. Select UsersRoles
  3. Select the USER role and click the Clone button (or click + to add the new role)
  4. Fill in the necessary info. (External roles are not necessary at this time)
  5. Save the role and select the required privileges. See Manage Roles#Privileges table
  6. Create a new user and assign the new role to this user

The Admin can also define Administration scopes. These define groups of enterprises or data centers (Abiquo datacenters or public cloud regions) that can be administered by a user. This allows for more control over the infrastructure and it enables service providers to support a reseller model. Each reseller can manage a scope that is a list of their own customers. Admins can also create a scope hierarchy for sharing resources, such as VM templates and application blueprints, down a "tree branch" that includes the Admin's resellers, their customers and the customers' departments, and so on.