Home >Documents >Enterprise Cloud 2.0 Tutorial v2.43.3 > 2. Common Function > 2.1. Use NTT Com Business Portal (Business Portal) > 2.1.5. How to use Smart Data Platform IAM > 2.1.5.1. How to Use API Authority Control Function > API Authority Management Function >Default Group and Default Role

Default Group and Default Role

The system-defined IAM groups and IAM roles are called default groups and default roles. The default role does not allow API access. Also, the default role is tied to the default group. *For the target users and when to start applying the specifications, please refer to the ECL2.0 Security Enhancements .

A new user belongs to Default Group when being created. If the user is intended to be linked with the group which controls API Execution Authority, it is necessary to cancel the linkage between the user and Default Group.

Note

Default Group and Role are the IAM Group and IAM Role that are defined by system.

Cancellation of Modify/Delete/Link is not available; yet, deleting the link between Default Group and the user is available.

---

IAM Role and IAM Group

Correlation at Deleting IAM Group and IAM Role