Identity and Access Management (IAM)
Thalassa Cloud’s Identity and Access Management (IAM) system provides access control for your cloud resources. Our IAM solution enables organisations to manage users, teams, and service accounts with fine-grained permissions through role-based access control (RBAC) at the organisation level and through project-scoped IAM policies.
Getting Started
Identity and Access Management (IAM) is the foundation of secure operations in Thalassa Cloud. With IAM, you can control who has access to resources, how permissions are granted, and ensure each user or system only has the privileges they need. Whether you’re inviting new organisation members, organizing users into teams, managing automated workflows with service accounts, defining organisation-wide roles, or scoping access per project with IAM policies, IAM gives you flexible and powerful tools to secure your cloud environment.
Access control layers
| Layer | Scope | Documentation |
|---|---|---|
| Organisation roles | Organisation-wide | RBAC roles |
| Projects | Logical resource groupings | Projects |
| IAM policies | Per-project RBAC with optional conditions and inheritance | IAM policies |
A principal’s effective access in a project context is the union of organisation roles and IAM policy bindings on the active project.
Note: All actions, including user invitations, role assignments, team modifications, and service account changes, are recorded in audit logs. This ensures a complete record of all access management activity for compliance, security auditing, and troubleshooting.