Stax Access

Learn how access to Stax is managed

Article Tags
On This Page
Managing Stax Console AccessManaging Stax API AccessAuditingSee also

Stax gives you control over who has access to your Stax instance.

Users are managed from within your Security Account and as such, it is recommended that only a select group of users have access to this account.

If you have an external identity provider, such as Okta, Ping or Azure AD, Stax allows you to integrate your identity provider so that you can federate your own user base into Stax.

Within Stax, access to the Stax console and Stax API are managed separately. Further information about managing access is provided below.


Managing Stax Console Access

Managing Stax Console access is done through Users in the Customer Menu. All users of your Stax instance are listed on the Users page and can be created and deactivated as required. When you sign up to Stax, you are provided with Root credentials so that you can login to your Stax instance. Once logged in, you can create your first User. It is recommended that once a User is created, you log in using User credentials henceforth, as opposed to Root credentials.

Three roles exist for governing Stax Console access:

  • Admin: Provides unrestricted access to Stax
  • User: Provides restricted access, particularly in regard to user management
  • Read Only: Provides read access only for Stax

See Stax Permissions for more detail on these roles.

Federated Users

Federated users are users that have been granted access to Stax by your external Identity Provider. These users will show up in the Users list, however, their details cannot be edited. These must be edited in your Identity Provider. Stax only allows the below actions to be made against a Federated user:

  • Deactivate user
    • Available via the Console
    • Available via the API (PUT /20190206/idam/user/{user_id})
  • Delete user
    • Available via the API (DELETE /20190206/users/{user_id})

Managing Stax API Access

API Tokens can be utilized to access the Stax API. As per the roles provided for Stax Console access, three roles exist for API Tokens:

  • Admin
    • Provides unrestricted access to Stax
  • User
    • Provides restricted access, particularly in regard to user management
  • Read Only
    • Provides read only access for Stax

Further information about API Tokens can be found here.


Auditing

Stax audits every single login action that occurs within your Stax Instance. This includes successful logins, incorrect passwords and user detail updates.


See also