Manage Organization Users
In Zilliz Cloud, an organization typically represents a company. You can invite employees to your organization and assign them roles based on their job functions. These roles determine the user's access to specific resources and the operations they can perform. For example, developers typically need access to data but do not require billing privileges.
This guide explains how to manage organization users, including inviting users to an organization, revoking or resending invitations, modifying an organization user's role, or removing an organization user.
Invite a user to your organization
When inviting a user to your organization, you need to assign a role that defines access to resources and the privileges to perform specific operations within the organization.
To invite users, enter the email addresses of the users you wish to invite. Then select the organization role you wish to grant to the new organization users.
Organization Owner
An Organization Owner is the top-level role in the Zilliz Cloud, which has full privileges to manage an organization and all its resources (projects, clusters, databases, collections). This role should be granted only to a limited number of users within the organization.
The following table lists the corresponding UI and API privileges of this organization role.
UI Privileges | Control Plane RESTful API (V2) Privileges | Data Plane RESTful API (V2) Privileges |
|---|---|---|
|
Organization Billing Admin
An Organization Billing Admin role has the privileges to manage billing in an organization. This role does not have privileges to other data in the organization.
The following table lists the corresponding UI and API privileges of this organization role.
UI Privileges | Control Plane RESTful API (V2) Privileges | Data Plane RESTful API (V2) Privileges |
|---|---|---|
| The data plan privileges are determined by project and cluster roles. However, a Billing Admin usually does not require data plane privileges. |
Organization Role
You can create an organization role for the invitation recipients. An organization role is a role with the privilege to view an organization and its resources. You can edit project- and cluster-level privileges for the role.
Customize project privileges
By default, Project Admin access to Default Project is granted to the invitation recipients. However, you can select Customize to grant fine-grained privileges.
By default, access is granted to All Clusters with the Include all future clusters option enabled. You can assign a role, such as Read-Write*,* to define the invited user's permissions across these clusters. Once the invitation is accepted, the user will have the specified privileges on all current and future clusters within the project.
To limit access, select specific clusters from the dropdown. You can also disable the Include all future clusters option to exclude newly created clusters from the access scope.
Click + Cluster Access to add more cluster access policies.
The following table lists the UI and API privileges granted to the invitees for this role at the organization level.
UI Privileges | Control Plane RESTful API (V2) Privileges | Data Plane RESTful API (V2) Privileges |
|---|---|---|
|
| The data plan privileges are determined by project and cluster roles |
Note that if you are an Organization Member or an Organization Billing Admin, you can only grant invitation recipients the role of Organization Member.
Invitation recipients will receive an email invitation that must be accepted within 48 hours to join the organization. Alternatively, you can copy the invitation link from the web console and share it with the invitees.
Each time, you can invite one or more users with the same role to the organization. Each organization can have up to 100 users.
Revoke or resend an invitation
After you invite a user to join your organization, Zilliz Cloud sends an invitation email to the user. You can revoke or resend the invitation before the user accepts it.
Edit the role of an organization user
Once a user accepts the invitation and joins your organization, you can adjust their roles as needed.
To edit an organization user's role, you must be an Organization Owner.
Remove an organization user
If a user no longer belongs to your organization, you can remove the user.
To remove an organization user, you must be an Organization Owner.
Leave an organization
When you no longer belong to an organization, you have the option to leave it.
Each organization must have at least one organization owner. If you are the only owner of an organization, you cannot leave it.
Once you leave an organization, you will no longer be able to access the organization and associated resources.
