As an organization owner, you can create new groups in your organization and assign the group Organization Roles, Service Roles, and Custom Roles. These groups are called custom groups.

For information about the permissions assigned with each organization role, see Organizational Roles and VMware Cloud Services. For information about the permissions assigned with service roles, see Predefined User Roles.

For information about Custom Roles, view How do I work with custom roles.

Procedure

  1. From the Carbon Black Cloud console, click the VMware Cloud Services Application Menu in the top-right corner and select Identity & Access Management.
  2. From the menu on the left, select Groups, and then click Add Groups.
  3. Select Create a new group, and click Continue.
  4. Enter a name and a description for the group.
  5. If you want to share the group with other organizations, click Add Organizations.
    1. Select the organizations that you want to share the group with: either type the Organization ID for each organization or make a selection from the list of organizations displayed in the pop-up window.
    2. Click Add.
      Note: When you create a custom group that is shared, the organization owners of the associated organizations can assign roles to the group in their organization.
  6. Click Add Members to add members to your group, add then click Add.
    Members can be enterprise groups and users. You can choose to skip this step and add members after you have created the group.
  7. Assign the group access to the organization by selecting an organization role.
  8. Assign the group access to the VMware Carbon Black Cloud by clicking Add service access and selecting VMware Carbon Black Cloud along with the predefined roles you want to assign to the group.
  9. To add access to an additional service, click Add service access.
  10. Optionally, assign a Custom Role to the group by clicking Add Custom Role Access.
  11. Click Create.
    The group is added to the list of groups on the Identity & Access Management page.

What to do next

To return to the Carbon Black Cloud console, click Services and then launch the Carbon Black Cloud service.