We want a report for audit or if I mess something up as to who has what ACL to what resource, service, etc. This way I can compare and contrast or find out that someone is an Admin that shouldn't be.
We are running a POC and have a shared account and are adding users to organizations, CF Org, Spaces, Resource Groups and Resources along with services. If you mess up on the initial panel, it is a poke and hope that you get the right access to the right resource or service or whatever I am missing. This POC extends to Watson Data Platform[WDP] (dataplatform.ibm.com) and their security model. I have an IBM Cloud Administrator role and a CF Manager role then DataPlaform roles and I cannot add new users from IBM Cloud to my WDP unless they are part of some role or group. Way too confusing.
Do not place IBM confidential, company confidential, or personal information into any field.