Users

Published April 5, 2023 | Last modified October 1, 2025

Objective

This guide provides information on how to create users and assign roles in the F5® Distributed Cloud Console. The console's Role-based Access Control (RBAC) is used to define and enforce user capabilities while using the F5 platform. For more information on roles and access control, see Roles.

Prerequisites

A valid F5 Console Account is required.

Note: If you do not have an account, see Getting Started with Console.

Create Users and Assign Roles

You can create users and assign roles to users after they log into the F5® Distributed Cloud Console.

See User Management, for instructions on creating users and assign roles.

Perform the following instructions to create users and assign roles in your F5 Distributed Cloud Console:

Step 1: Open User Management.

Open F5 Distributed Cloud Console > select Administration box.

Note: Homepage is role based, and your homepage may look different due to your role customization. Select All Workspaces drop-down menu to discover all options. Customize Settings: Administration > Personal Management > My Account > Edit work domain & skills button > Advanced box > check Work Domain boxes > Save changes button.

Figure: Homepage

Select IAM in left-menu > select Users.

Note: If options are not showing available, select Show link in Advanced nav options visible in bottom left corner. If needed, select Hide to minimize options from Advanced nav options mode.

Select + Add User button.

Figure: User Management

Add New User window pops-up.

Figure: Add New User Pop-up Window

Step 2: Setup and Assign Roles to User.

Select User Type drop-down menu option:
- SSO User: If you enabled SSO for the tenant.
Note: See, SSO Guides to set up SSO for your enterprise.
- Local User: If users logs in using their email address and password.
Note: SSO must be disabled in order to create a User type.

Figure: Select User Type

Note: One User Type, SSO User or User, allowed enabled at any point in time.

Enter data for SSO User or User with steps below:
- Enter Email address of user.
- Enter First Name in box.
- Enter Last Name in box.

Figure: Add User Type Info

Note: If user is not assigned a role or group access will be denied to anything in the console. See Roles, for more information.

Select + Assign Roles and Namespaces button to customize in pop-up window.
- Select Namespace from drop-down menu, or all application namespaces.
- Optionally, select the Make Admin checkbox to enable administrator role for the namespace selected.
- Select Role needed by checking boxes.
- Select Assign Roles button to apply roles to the user.

Figure: Add Roles and Namespaces

Step 3: Complete User Creation.

Select Send Invite button to invite user to tenant.

Figure: Create User

Create User Groups and Add Users

Step 1: Create Group.

In Administration workspace.
Select Groups in IAM section.
Select + Add Group button.

Figure: Create Group

Enter Group Name.
Enter Description.

Figure: Name Group

Select + Assign Roles and Namespaces button.
- Select Namespace in drop-down menu.
- Check Make Admin, if applicable.
- Check Role(s) boxes to add to group.
- Select Assign Roles button.
Note: You can edit Namespaces and Users sections by selecting ... in Actions column.
Select + Add Users button.
- Check User Name boxes to add to group.
- Select Add Users button.
Select Add Group button to create group.

Figure: Add Group

Select + Add Group button in upper-left corner to add additional groups.

Step 2: Add User to Group.

Select Users in IAM section to add users to groups.

Note: You can add, edit, and view groups in Users and Groups section of IAM.

Select ... in Actions column.
Select Edit User.

Figure: Add User to Group

Note: Users Groups column will show which groups user is assigned.

Select + Assign User to Group button to add group to user.

Figure: Add Users

Check Group Name.
Select Assign to Group button.

Note: Select ... in Actions column to delete user from Group Name.

Select Assign Roles and Namespace button to add roles and namespaces to user.
- Select Namespace drop-down menu.
- Check Make Admin, if applicable.
- Check Role(s) for group.
- Select Assign Roles button.
Select Save Changes button to add user to group.

Figure: Assign Roles

Confirm Groups column is updated with group added.

Step 3: Add Multiple Users to One Group.

Select Groups in IAM to add multiple users to one group.
Select ..., select Edit.

Figure: Add Multiple Users to One Group

Select + Add Users.
Select User Name you want added to group.
Select Add Users button.
Select Save Changes button.

Figure: Add Users to Group

Delete Users and Groups

Step 1: Delete Users.

In Administration workspace.
Select Users in IAM.
Identify User ID you want to delete.
Select ... > select Delete User.

Figure: Delete Users

Select Delete button in pop-up window.
Confirm user is removed from Users list.

Figure: Delete Users

Step 2: Delete Groups.

Note: You must delete dependent objects from the group before you can delete the group.

In Administration workspace.
Select Groups in IAM.
Identify Group you want to delete.
Select ... > select Delete.

Figure: Delete Groups

Select Delete button in pop-up window.
Confirm group is removed from Groups list.

Figure: Delete Groups

Show Referring Objects

Use the Show Referring Objects option to see all objects attached to the user group.

From the Distributed Cloud Console homepage, select Administration, and then select IAM > Groups.
From the Actions column, select the Action menu ... next a user group.
Select Show Referring Objects to view the following object types that refer to that user group:
- User
- Allowed tenants
- Child tenant manager
- Access mapping
- Service credentials
Figure: Show Referring Objects