Membership and Access Control

Understanding membership levels and access control is essential for effectively using sc.sb services. This guide covers how membership works, access control mechanisms, and how to manage your service permissions.

Membership Overview

What is Membership?

Membership in sc.sb refers to your access level and permissions within the platform. Unlike traditional subscription-based services, sc.sb membership is managed through your organization's Azure AD groups, providing enterprise-grade access control.

Membership Characteristics

Group-Based - Access controlled through Azure AD security groups
Role-Based - Permissions aligned with your organizational role
Dynamic - Access can be modified in real-time by administrators
Auditable - All access changes are logged and tracked

Access Control System

Azure AD Integration

How It Works:

Each sc.sb service corresponds to an Azure AD security group
Users are added to groups based on their role and needs
Access is automatically granted/revoked based on group membership
Changes sync immediately across the platform

Benefits:

Centralized Management - All access controlled through Azure AD
Enterprise Integration - Seamless integration with existing identity systems
Compliance Ready - Meets enterprise security and compliance requirements
Audit Trail - Complete logging of access changes

Group-Based Access

Service Groups:

Storage Services - Groups for different storage service levels
Cluster Services - Groups for computing cluster access
Media Services - Groups for media processing capabilities
GPU Services - Groups for GPU-accelerated computing
Connectivity Services - Groups for network access options

Permission Levels:

Read-Only - View and download content only
Read-Write - Full access to create, modify, and delete
Admin - Administrative access for service management
Owner - Full control including user management

Membership Levels

Basic Membership

Included Features:

Access to basic services based on group membership
Standard support and documentation
Basic service monitoring and status
Standard connection options

Limitations:

Limited to services in your assigned groups
Standard performance and availability
Basic support response times
Limited advanced features

Enhanced Membership

Additional Features:

Access to premium services and features
Priority support and faster response times
Advanced monitoring and analytics
Enhanced connection options and performance

Requirements:

Membership in premium service groups
Additional Azure AD group assignments
May require special approval or licensing

Administrative Membership

Administrative Features:

User management and access control
Service configuration and management
Advanced monitoring and reporting
System administration capabilities

Responsibilities:

Managing user access and permissions
Monitoring service usage and performance
Ensuring compliance with organizational policies
Coordinating with sc.sb support team

Access Management

Requesting Access

Process:

Identify Need - Determine which services you need access to
Contact Administrator - Reach out to your Azure AD administrator
Provide Justification - Explain why you need access
Wait for Approval - Administrator reviews and approves request
Verify Access - Check your LaunchPad for new services

Best Practices:

Be specific about which services you need
Provide clear business justification
Follow your organization's approval process
Document access requests for audit purposes

Access Reviews

Regular Reviews:

Periodic access audits to ensure appropriate permissions
Removal of unused or unnecessary access
Verification of current role requirements
Compliance with organizational policies

Self-Service Reviews:

Review your current access in the LaunchPad
Identify unused services or permissions
Request removal of unnecessary access
Report any access issues or concerns

Service Access Patterns

Automatic Access

How It Works:

Access is automatically granted when added to groups
Services appear in your LaunchPad immediately
No additional configuration required
Access is revoked when removed from groups

Benefits:

Immediate access to needed services
No manual configuration required
Consistent access across all users
Automatic cleanup when access is no longer needed

Conditional Access

Access Conditions:

Device Compatibility - Some services require specific devices
Network Requirements - Some services need specific connections
Regional Restrictions - Services may be limited by geography
Time-Based Access - Some services may have time restrictions

Managing Conditions:

Check service status for access requirements
Ensure you meet all access conditions
Contact support for assistance with access issues
Work with administrators to modify access conditions

Access Monitoring

Dashboard Monitoring

Real-Time Status:

View all services you have access to
Check service availability and status
Monitor connection requirements
Review access limitations and alerts

Status Indicators:

Green - Full access and optimal performance
Orange - Access with limitations or warnings
Red - Access denied or service unavailable

Access Logging

What's Logged:

All service access attempts
Successful and failed authentication events
Permission changes and modifications
Administrative actions and decisions

Log Access:

Administrators can view access logs
Users can request their access history
Compliance and audit reporting available
Integration with security monitoring systems

Troubleshooting Access Issues

Common Problems

"Access Denied" Errors:

Check your group membership in Azure AD
Verify service is available and operational
Confirm you meet all access conditions
Contact your administrator for assistance

Services Not Appearing:

Wait for group membership changes to sync
Refresh your LaunchPad page
Check if service is temporarily unavailable
Verify you're in the correct groups

Permission Errors:

Review your current permissions
Check if permissions have been modified
Contact support for permission issues
Work with administrators to resolve problems

Getting Help

Support Channels:

Contact your Azure AD administrator first
Use sc.sb support channels for platform issues
Escalate through your organization's IT support
Use built-in help and documentation

Best Practices

For Users

Regular Reviews - Periodically review your access and permissions
Minimal Access - Request only the access you actually need
Security Awareness - Report any suspicious access or activity
Documentation - Keep records of your access requests and approvals

For Administrators

Regular Audits - Conduct periodic access reviews and audits
Principle of Least Privilege - Grant only necessary access
Documentation - Maintain clear records of access decisions
Training - Provide users with access management training

For Organizations

Access Policies - Establish clear access management policies
Regular Reviews - Implement regular access review processes
Compliance - Ensure access management meets compliance requirements
Monitoring - Implement comprehensive access monitoring

Compliance and Security

Access Compliance

Regulatory Requirements:

Regular access reviews and audits
Documentation of access decisions
Monitoring of access patterns and usage
Compliance with data protection regulations

Security Standards:

Principle of least privilege access
Regular access cleanup and maintenance
Monitoring for unauthorized access
Integration with security information systems

Audit and Reporting

Audit Capabilities:

Complete access change history
User access reports and analytics
Compliance reporting and documentation
Integration with audit and compliance systems

Next Steps

Learn about [Account Setup and Management](account setup/account-setup.md)
Understand Service Types and Capabilities
Explore Security Fundamentals
Review Troubleshooting Common Issues

Effective access control is essential for maintaining security and ensuring users have appropriate access to sc.sb services. Work with your administrators to ensure your access meets your needs while maintaining security best practices.

Membership Overview​

What is Membership?​

Membership Characteristics​

Access Control System​

Azure AD Integration​

Group-Based Access​

Membership Levels​

Basic Membership​

Enhanced Membership​

Administrative Membership​

Access Management​

Requesting Access​

Access Reviews​

Service Access Patterns​

Automatic Access​

Conditional Access​

Access Monitoring​

Dashboard Monitoring​

Access Logging​

Troubleshooting Access Issues​

Common Problems​

Getting Help​

Best Practices​

For Users​

For Administrators​

For Organizations​

Compliance and Security​

Access Compliance​

Audit and Reporting​

Next Steps​