Account and team settings
On this page you can view settings for your Redis Cloud account and team. You can also:
- Add or edit your VAT ID
- Change the account time zone
- Add a new Relic license key
- Configure Multi-Factor Authentication (MFA)
When you set up SSL/TLS for your account, you must enter the downloadable Redis CA Certificate from this page.
To manage the team of people who have access to the account, click on the “Team” tab, and you will be presented with the current list of team members on this account.
- To add more team members, click .
- To edit an existing team member, click .
Team members can have different roles to the account:
- Owner - Can view, create, and edit any settings in the account
- Member - Can view, create, and edit databases
- Viewer - Can view all databases and their configurations (including database secrets)
Team management for GCP Marketplace customers
If you subscribed to Redis Enterprise Cloud using GCP Marketplace, you can manage your team from the IAM section of the GCP console. To grant Redis Cloud access to a GCP user, select the Add button to add a member, insert the email address, and then assign one of the following roles to the user:
serviceusage.serviceUsageViewer & redisenterprisecloud.viewer - these roles should be assigned to member designated as viewer serviceusage.serviceUsageViewer & redisenterprisecloud.admin - these roles should be assigned to member designated as owner
In case these roles do not appear, add a role to your project by doing the following:
- Select Manage Roles
- Search the role on the filter table field ( for example: “service usage viewer” or “redis enterprise cloud admin”)
- Place a check in the checkbox
- Select Create role from selection and select Create
- Go back to IAM to add a member and assign the desried roles.
Users are not added to the team until they sign in to Redis Cloud using their single-sign on (SSO) credentials. Use the manage on provider button to do so.
Multi-Factor Authentication (MFA)
To reduce the chances of unauthorized access to the Redis Enterprise Cloud admin console, each user can enable MFA to require an authentication code at login. The account owner can also enable MFA enforcement for all users in the account to block users from logging in without MFA.
When MFA is enabled, it forces users to enter their username, password, and an authentication code sent to them by text message or generated by an app on their smartphone. MFA authentication requires a phone that can receive text messages.
Using MFA for a user account
Each user can enable and configure MFA for their user account. The default MFA configuration sends an authentication code by text message to enter when you log in.
To configure MFA for your user account:
- Log in to your account.
- In the menu, click on your name.
- In your user profile, click Multi-Factor Authentication.
- Click Activate Now
- Enter your mobile phone number and enter the confirmation code sent to you by text message.
Your account is now configured for MFA. When you log in to the Redis Cloud admin console, you are sent an authentication code by text message.
To change the mobile phone number, select Configure for the text message code and enter the new mobile phone number.
We recommend that you also configure MFA for an Authenticator app as a second method of MFA. If you can’t login to your account because of MFA, contact Support.
If your mobile phone is lost or stolen, make sure you update the MFA configuration to prevent unauthorized logins.
Configuring MFA for an authenticator app
After you configure MFA for text messages, you can also configure MFA to work with a Time-based One-Time Password (TOTP) app such as Google Authenticator. Then when you log in to the admin console, you can select to use either an authentication code sent by text message or an authentication code shown in the Authenticator app for MFA.
To configure MFA for the Authenticator app:
- Install the Google Authenticator app on your phone from the Apple Store or Google Play.
- Add Redis Enterprise Cloud to the app:
- In your profile in your Redis Cloud account, click Multi-Factor Authentication.
- Select Configure for the authenticator app.
- On your phone, open the Authenticator app.
- Select the plus sign and press Scan a barcode.
- Scan the Redis Cloud barcode.
To log in to the Redis Enterprise Cloud admin console, you can do MFA either with a text message or the Authenticator app. If you use with the Authenticator app, you must open the Authenticator app to locate the code that lets you sign in to the Redis Enterprise Cloud admin console.
To deactivate MFA, go to your profile, select Multi-Factor Authentication, and select Deactivate.
Enforcing MFA for all user accounts
Account owner users can enable MFA enforcement for all users in their account. After MFA is enforced for the account, all users that do not have MFA enabled are required to configure MFA the next time they log in to the Redis Enterprise Cloud admin console.
- When you enable MFA enforcement, users can’t disable MFA for their account.
- When you disable MFA enforcement, users can disable MFA for their account.
To enable MFA enforcement for all user accounts, the account owner must enable MFA enforcement in Settings > Account.