Skip to main content
Datum Cloud provides identity and access management through the iam.miloapis.com API. You define roles that bundle permissions, grant them to identities with policy bindings, organize people into groups, run automation under service accounts, and bring new people onboard with user invitations. Together these resources decide which identities can perform which actions on which resources.
The IAM API is alpha (v1alpha1). Fields and behavior may change in backward-incompatible ways between releases.

Resources

Role

A named collection of permissions that can be granted to identities.

PolicyBinding

Grants a role to one or more identities on a target resource.

Group

A named set of members you can grant access to as a unit.

GroupMembership

Places a user or service account into a group.

ServiceAccount

A non-human identity for automation and machine-to-machine access.

UserInvitation

Invites a person to join and take on access within Datum Cloud.

Learn more

Last modified on July 2, 2026