A feature that enables the management of users, user groups, and user roles, supporting fine-grained access control and centralized administrative oversight.
DigiCert® DNS provides a centralized interface to manage users, organize groups, and define role-based permissions. This streamlines access management, reduces operational overhead, and enhances security by ensuring that only authorized users can access sensitive resources.
- User group management: This function allows administrators to create and manage user groups, simplifying bulk permissions assignment and access control.
- User management: This function enables administrators to access user information, list users, and perform bulk updates to roles and groups, improving efficiency and optimizing resource use.
- User role management: This function enables administrators to define and assign roles with specific permissions, ensuring secure and structured access to system resources.
This guide provides detailed instructions for user group management, covering both targeted and comprehensive actions.
Targeted actions include:
- Adding multiple members to a specific user group
- Creating a new user group
- Deleting a specific user group
- Listing the members of a specific user group
- Listing the non-members of a specific user group
- Removing multiple members from a specific user group
- Returning the details of a specific user group
- Updating a specific user group
Comprehensive actions include:
User group management ensures consistent access control across teams, reduces errors by assigning permissions in bulk, and minimizes the risk of unauthorized changes. With DigiCert® DNS, users gain flexibility in managing permissions while improving efficiency and scalability. Built-in traceability features ensure accountability for all actions, while centralized management simplifies oversight by defining who can access or modify DNS records, making large-scale user administration more controlled and secure.
Notice
This procedure adds two users (Jane Doe and John Doe) to a specific user group (usergroup1) created in an earlier procedure.
To test this function, call this API endpoint: POST /accessmanagement/usergroups/{userGroupId}/members/bulk/add
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USER GROUPS tab.
The table displays all the user groups currently registered in the system.
- Select the name of the user group (for example, usergroup1) to which you want to add users - see Path 2 for quick filtering.
- In the Members section, select the Add Members button.
- In the Add Members dialog:
- Select the checkboxes next to the users you want to add (for example, Jane Doe and John Doe).
-
Select Save to finish.
A message appears confirming the successful addition of the users.
Notice
This procedure clears two user groups (usergroup1 and usergroup2) created in an earlier procedure.
To test this function, call this API endpoint: POST /accessmanagement/usergroups/bulk/delete
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
- In the USER GROUPS tab, select the checkboxes of the user groups you want to clear (for example, usergroup1 and usergroup2).
- Select Delete at the top of the table.
-
In the Confirm Deletion dialog, select Confirm.
A message appears confirming the successful clearance of the user groups.
Notice
This procedure creates two user groups: usergroup1 and usergroup2. These user groups are referenced in other procedures.
To test this function, call this API endpoint: POST /accessmanagement/usergroups
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USER GROUPS tab.
The table displays all the user groups currently registered in the system.
- Select the Add User Group button.
- In the Add User Group dialog:
- Enter a name in the User Group Name field (for example, usergroup1).
- (Optional) Enter a description in the Description field.
-
Select Save to finish.
A message appears confirming the successful creation of the user group.
- Repeat Steps 4-5 to create another user group, usergroup2.
Notice
This procedure deletes a user group (usergroup1) created in an earlier procedure. You can follow either Path 1 or Path 2 to complete the deletion. Note that user groups can only be deleted if they are empty. The Default user group cannot be deleted.
To test this function, call this API endpoint: DELETE /accessmanagement/usergroups/{userGroupId}
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
- In the USER GROUPS tab, at the end of the row of the user group you want to delete, select the trash icon.
-
In the Confirm Deletion dialog, select Confirm.
A message appears confirming the successful deletion of the user group.
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
In the USER GROUPS tab, select the checkbox of the user group you want to delete.
Tip
You can select multiple checkboxes to delete several user groups at once.
- Select Delete at the top of the table.
-
In the Confirm Deletion dialog, select Confirm.
A message appears confirming the successful deletion of the user group.
Notice
This procedure displays all user groups created by the user.
To test this function, call this API endpoint: GET /accessmanagement/usergroups
Notice
This procedure displays the members who exist within a specific user group (usergroup1). The user group was previously created here.
To test this function, call this API endpoint: GET /accessmanagement/usergroups/{userGroupId}/members
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USER GROUPS tab.
The table displays all the user groups currently registered in the system.
- Select the name of the user group (for example, usergroup1) whose members you want to view - see Path 2 for quick filtering.
Notice
The current version of DigiCert® DNS does not include a dedicated front-end tab for viewing the non-members of a specific user group. To access this information, use the following endpoint:
GET /accessmanagement/usergroups/{userGroupId}/nonmembers
For help configuring your testing environment, refer to the API guide.
Notice
This procedure removes two users (Jane Doe and John Doe) from a specific user group (usergroup1) created in an earlier procedure.
Users must belong to at least one user group and cannot exist independently; if a user exists only in the Default resource group, they cannot be removed from it. If a user is removed from their only group, they are automatically placed into the Default user group.
To test this function, call this API endpoint: POST /accessmanagement/usergroups/{userGroupId}/members/bulk/remove
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USER GROUPS tab.
The table displays all the user groups currently registered in the system.
- Select the name of the user group (for example, usergroup1) whose users you want to remove - see Path 2 for quick filtering.
- In the Members section, select the checkboxes of the users you want to remove (for example, Jane Doe and John Doe).
- Select Remove at the top of the table.
-
In the Confirm Removal dialog, select Confirm.
A message appears confirming the successful removal of the users.
Notice
This procedure displays the details of a specific user group (usergroup1) created in an earlier procedure. Follow Path 1 if there are only a few results to review. Follow Path 2 if you prefer to filter results quickly.
To test this function, call this API endpoint: GET /accessmanagement/usergroups/{userGroupId}
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USER GROUPS tab.
The table displays all the user groups currently configured in the system.
- Select the name of the user group (for example, usergroup1) whose details you want to view.
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USER GROUPS tab.
The table displays all the user groups currently configured in the system.
-
Select Filters at the top of the results table to locate the specific user group quickly.
Tip
In this example, the name of the user group is known, so the following filter was applied:
- Under Column, select Name.
- Under Operator, select contains.
-
Under Value, enter the user group's name (usergroup1).
If no results appear, double-check the Filters selections and input values.
- Select the name of the user group (for example, usergroup1) whose details you want to view.
Notice
This procedure updates a specific user group (usergroup1) created in an earlier procedure.
To test this function, call this API endpoint: PUT /accessmanagement/usergroups/{userGroupId}
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USER GROUPS tab.
The table displays all the user groups currently configured in the system.
- Locate the specific user group - see Path 2 for quick filtering.
- Select the name of the user group (for example, usergroup1) whose details you want to update.
- In the usergroup1 dialog:
- Edit the user group's details as required.
-
Select Save to finish.
A message appears confirming the successful update of the user group.
This guide provides detailed instructions for user management, covering both targeted and comprehensive actions.
Targeted actions include:
Comprehensive actions include:
User management is crucial for maintaining secure and efficient access control. DigiCert® DNS enables administrators to view detailed user information, including resource group memberships and permissions, facilitating precise auditing and control. Bulk updates to user roles and groups reduce manual effort and improve consistency across large user bases. By centralizing access management, organizations can enforce role-based security, strengthen oversight, and ensure that sensitive resources remain protected and accessible only to authorized users.
Notice
This procedure displays all the user accounts in the system. Note that only administrators have access to this information.
To test this function, call this API endpoint: GET /accessmanagement/users
Notice
This procedure displays the permissions assigned to a specific user (Jane Doe) for a specific resource group (resourcegroup1). The resource group was previously created here. Note that only administrators have access to this information.
To test this function, call this API endpoint: GET /accessmanagement/{userId}/resourcegroups/{resourceGroupId}/permissions
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USERS tab.
The table displays all the user accounts currently registered in the system.
- Locate the specific user - see Path 2 for quick filtering.
-
Select the name of the user (for example, Jane Doe) whose permissions you want to view.
Alternatively, select the overflow menu (three vertical dots) at the end of the user's row, and select View User.
-
Select the ACCESS tab.
The user's assigned resource groups appear in the Effective Permissions section.
- Select the name of the resource group (for example, resourcegroup1) whose permissions you want to view.
Notice
This procedure displays the resource groups assigned to a specific user (Jane Doe). Note that only administrators have access to this information.
To test this function, call this API endpoint: GET /accessmanagement/users/{userId}/resourcegroups
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USERS tab.
The table displays all the user accounts currently registered in the system.
- Locate the specific user - see Path 2 for quick filtering.
-
Select the name of the user (for example, Jane Doe) whose resource groups you want to view.
Alternatively, select the overflow menu (three vertical dots) at the end of the user's row, and select View User.
-
Select the ACCESS tab.
The user's assigned resource groups appear in the Effective Permissions section.
Notice
This procedure updates the group assignments of two users (Jane Doe and John Doe). Note that only administrators can update user group assignments.
To test this function, call this API endpoint: PUT /accessmanagement/users/bulk/usergroups
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USERS tab.
The table displays all the user accounts currently registered in the system.
- Select the checkboxes of the users you want to update (for example, Jane Doe and John Doe).
- Go to Actions > Edit User Groups.
- In the Edit User Groups dialog:
- Select the groups to which the designated users should be assigned.
-
Select Apply.
A message appears confirming the successful update of the user group assignments.
Notice
This procedure updates the role assignments of two users (Jane Doe and John Doe). Note that only administrators can update user role assignments.
To test this function, call this API endpoint: PUT /accessmanagement/users/bulk/roles
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USERS tab.
The table displays all the user accounts currently registered in the system.
- Select the checkboxes of the users you want to update (for example, Jane Doe and John Doe).
- Go to Actions > Edit User Roles.
- In the Edit User Roles dialog:
- Select the roles to which the designated users should be assigned.
-
Select Apply.
A message appears confirming the successful update of the user roles.
Notice
This procedure displays the details of a specific user (Jane Doe). Note that only administrators have access to this information. Follow Path 1 if there are only a few results to review. Follow Path 2 if you prefer to filter results quickly.
To test this function, call this API endpoint: GET /accessmanagement/users/{userId}
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USERS tab.
The table displays all the user accounts currently registered in the system.
-
Select the name of the user (for example, Jane Doe) whose details you want to view.
Alternatively, select the overflow menu (three vertical dots) at the end of the user's row, and select View User.
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the USERS tab.
The table displays all the user accounts currently registered in the system.
-
Select Filters at the top of the results table to locate the specific user quickly.
Tip
In this example, the name of the user is known, so the following filter was applied:
- Under Column, select Name.
- Under Operator, select contains.
-
Under Value, enter the user's name (Jane Doe).
If no results appear, double-check the Filters selections and input values.
-
Select the name of the user (for example, Jane Doe) whose details you want to view.
Alternatively, select the overflow menu (three vertical dots) at the end of the user's row, and select View User.
This guide provides detailed instructions for user role management, covering both targeted and comprehensive actions.
Targeted actions include:
Comprehensive actions include:
User role management provides precise and consistent permission assignment, reducing the risk of accidental or unauthorized DNS changes. With DigiCert® DNS, organizations can streamline operations, support scalable access control, and delegate tasks efficiently. Centralized management simplifies compliance, auditing, and policy enforcement, creating a more secure, manageable, and reliable DNS environment.
Notice
This procedure clears two user roles (userrole1 and userrole2) created in an earlier procedure.
To test this function, call this API endpoint: POST /accessmanagement/userroles/bulk/delete
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
- In the ROLES tab, select the checkboxes of the user roles you want to clear (for example, userrole1 and userrole2).
- Select Delete at the top of the table.
-
In the Confirm Deletion dialog, select Confirm.
A message appears confirming the successful clearance of the user roles.
Notice
This procedure creates two user roles: userrole1 and userrole2. These user roles are referenced in other procedures. Note that only administrators can create user roles.
To test this function, call this API endpoint: POST /accessmanagement/userroles
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the ROLES tab.
The table displays all the user roles currently registered in the system.
- Select the Add Custom Role button.
- In the Add Custom Role dialog:
- Enter a name in the Role Name field (for example, userrole1).
- (Optional) Enter a description in the Role Description field.
- In the Role Permissions section, select the permissions you want to assign to the new role.
-
Select Save to finish.
A message appears confirming the successful creation of the user role.
- Repeat Steps 4-5 to create another user role, userrole2.
Notice
This procedure displays all user roles currently configured in the system. Note that only administrators have access to this information.
To test this function, call this API endpoint: GET /accessmanagement/userroles
Notice
This procedure displays the details of a specific user role (userrole1) created in an earlier procedure. Note that only administrators have access to this information. Follow Path 1 if there are only a few results to review. Follow Path 2 if you prefer to filter results quickly.
To test this function, call this API endpoint: GET /accessmanagement/userroles/{userRoleId}
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the ROLES tab.
The table displays all the user roles currently registered in the system.
-
Select the name of the user role (for example, userrole1) whose details you want to view.
Alternatively, select the overflow menu (three vertical dots) at the end of the user role's row, and select View Role.
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the ROLES tab.
The table displays all the user roles currently registered in the system.
-
Select Filters at the top of the results table to locate the specific user role quickly.
Tip
In this example, the name of the user role is known, so the following filter was applied:
- Under Column, select Name.
- Under Operator, select contains.
-
Under Value, enter the user role's name (userrole1).
If no results appear, double-check the Filters selections and input values.
-
Select the name of the role (for example, userrole1) whose details you want to view.
Alternatively, select the overflow menu (three vertical dots) at the end of the user role's row, and select View Role.
Notice
This procedure updates a specific user role (userrole1) created in an earlier procedure.
To test this function, call this API endpoint: PUT /accessmanagement/userroles/{userRoleId}
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the ROLES tab.
The table displays all the user roles currently registered in the system.
- Locate the specific user role - see Path 2 for quick filtering.
-
Select the name of the user role (for example, userrole1) whose details you want to update.
Alternatively, select the overflow menu (three vertical dots) at the end of the user role's row, and select Edit Role.
- In the Edit Custom Role dialog:
- Edit the user role's details as required.
-
Select Save to finish.
A message appears confirming the successful update of the user role.
Notice
This procedure updates the permissions of a specific user role (userrole1) created in an earlier procedure.
To test this function, call this API endpoint: PUT /accessmanagement/userroles/{userRoleId}/permissions
- Sign in to your DigiCert® DNS account.
- From the landing page, go to the left sidebar and select Settings > Access Management.
-
Select the ROLES tab.
The table displays all the user roles currently registered in the system.
- Locate the specific user role - see Path 2 for quick filtering.
-
Select the name of the user role (for example, userrole1) whose permissions you want to update.
Alternatively, select the overflow menu (three vertical dots) at the end of the user role's row, and select Edit Role.
- In the Edit Custom Role dialog:
- Edit the user role's permissions as required.
-
Select Save to finish.
A message appears confirming the successful update of the user role's permissions.