User management

Administrators (Admins) can add or delete members of a workspace, as well as managing their permissions. This topic describes how to manage users in Model Studio.

Visitor accounts do not have access to the user management feature. Use your Alibaba Cloud account or use an Admin account for the relevant workspace.

If you are not familiar with concepts such as workspace, Admin, Visitor, and RAM user, please read Permissions and Role management first.

Add a user

If you have no RAM user, register a RAM user first.

This section will guide you to add your RAM user to the current workspace and assign it a specific role, Admin or Visitor.

Go to User Management and click Add User.
In the RAM User dropdown list, select the target RAM user. The system will automatically fill in the Username and Account. Then click Next.
If the RAM User dropdown list is empty, you do not have the necessary management layer permissions, AliyunBailianFullAccess or AliyunBailianControlFullAccess. Contact the Super Admin for authorization.
Select one or more appropriate roles from the Role drop-down list. Then, click Complete.
Selecting both Visitor and Admin has the same effect as selecting only Admin.
Assign only the minimum necessary permissions to your RAM user to mitigate security risks.
Currently, you cannot customize roles or assign the Super Admin role.
- Admin: Has access to all features within the assigned workspace.
- Visitor: Has access to all features within the assigned workspace, except for user management and role management.
(Optional) To view user details, go to the User Management page and click View Details in the Actions column.
In the Details panel, view the user information details, including username, account information, and more.

Edit user permissions

Edit a user's role to adjust its feature usage permissions within the workspace.

On the User Management page, click Edit Permission in the Actions column to the right of the target username.
In the Edit Permission panel, set Role as required, and click Save.

Edit user basic information

On the User Management page, click Edit in the Actions column to the right of the target username.
In the Edit Basic Information panel, edit the Username and Note. Then, click Save.

Delete a user

Remove a user and its permissions from the workspace. This operation is visible only to the Alibaba Cloud account.

On the User Management page, click Delete in the Actions column to the right of the target username.
In the dialog box that appears, click OK.

FAQ

I have granted management layer permissions to my RAM user or RAM role. But when I log on to the console, it still says that I do not have workspace permissions?

For RAM users or RAM roles, having management layer permissions does not mean they can access and use a workspace. You must also grant data layer permissions to determine their access to particular workspaces.

For RAM users, see Grant workspace access to a RAM user for detailed steps.
For RAM roles, see Log on and use Model Studio as a RAM role for detailed steps.

My RAM user need to call a model in a sub-workspace (non-default workspace), but the workspace has no API key. What should I do?

A RAM user must complete the following prerequisites to call a model with its own API key:

The RAM user requires access to the workspace, refer to the steps above.
The RAM user requires permissions for the model, see Authorize models for a sub-workspace.
The RAM user must create an API key on its own.

For API examples, see Qwen.

How to authorize a model for a sub-workspace?

For a detailed guide, see Authorize models for a sub-workspace.