Best Practices for User Management

You can adhere to the suggested best practices to realize optimum performance.

Follow the Principle of Least Privilege

Reltio recommends having only one project owner for your Analytics project. For more information, see IAM guidance on least privilege.

Use IAM Services to Manage Access to Resources

Large organizations often separate operations teams (security and network administration teams) from product teams. You can configure the settings for this separation by using IAM and service accounts.

With IAM, you can manage access control by defining different levels of access. Grant roles to users by creating an IAM policy, which is a collection of statements attached to a resource that define and control who has what type of access to that resource.

To give granular access to specific Google Cloud resources, use Predefined roles or define Customized IAM roles.

Use Group Policies

When you use policy groups instead of individual policies, your administrators can adjust group membership as and when a team members joins or leaves the organization. As a result, the correct policy changes are applied automatically.

To implement this, create groups based on job functions for each project or folder, then assign multiple roles to each group as necessary for the job function.

Centralized Approach to Onboarding and Off-boarding Users

Large organizations often have numerous projects and users that interact directly with Reltio Analytics. To best support existing IT governance and access control strategies, it is recommended that you add Reltio Analytics as part of your centralized approach for onboarding and off-boarding processes.