We want a report for audit or if I mess something up as to who has what ACL to what resource, service, etc. This way I can compare and contrast or find out that someone is an Admin that shouldn't be.
We are running a POC and have a shared account and are adding users to organizations, CF Org, Spaces, Resource Groups and Resources along with services. If you mess up on the initial panel, it is a poke and hope that you get the right access to the right resource or service or whatever I am missing. This POC extends to Watson Data Platform[WDP] (dataplatform.ibm.com) and their security model. I have an IBM Cloud Administrator role and a CF Manager role then DataPlaform roles and I cannot add new users from IBM Cloud to my WDP unless they are part of some role or group. Way too confusing.
NOTICE TO EU RESIDENTS: per EU Data Protection Policy, if you wish to remove your personal information from the IBM ideas portal, please login to the ideas portal using your previously registered information then change your email to "firstname.lastname@example.org" and first name to "anonymous" and last name to "anonymous". This will ensure that IBM will not send any emails to you about all idea submissions