DO Ideas 2

Allow team accounts

I currently work with large teams and I'd love to see an option to create "team accounts".

Team administrators would be able to assign permissions to users, which droplet they should have access to, allow them to boot up additional droplets, and other various team related functions.

I currently do this outside of DO with the API, but I would love to see something like this being integrated into DO, I'd even pay more if needed.

  • Contex Moh
  • Sep 11 2018
  • Shipped
  • Sep 11, 2018

    Admin Response

    I am very excited to announce Team Accounts has been released to all users. Head on over to our blog (https://www.digitalocean.com/company/blog/team-accounts-share-resources-not-passwords/) to learn more and check out the new community tutorial (https://www.digitalocean.com/community/tutorials/how-to-use-digitalocean-team-accounts) to get started. - Brooke
  • Attach files
  • Safeharbour commented
    September 11, 2018 18:36

    Awesome feature DO, for those who need a little extra, a third party enhancement to your DO experience is available, you can see its implementation of organizations here:
    https://safeharbour.io/help/pages/working_with_organizations.html

  • Juan Lebrijo commented
    September 11, 2018 18:36

    I am a freelancer who works for several clients (each client has his account).

    Bug: I need to create an account for each client to join their teams.

    Feature: One account belongs to zero or many teams

  • C commented
    September 11, 2018 18:36
  • Gideon Kitili commented
    September 11, 2018 18:36

    Problem: I have clients websites that I support on the same droplet. My clients are companies who want to have invoices.

    It is very frustrating when you open a new account for the client, make the payment and the it gets locked, and it takes hours to unlock.

    Feature: There should be team support feature

  • Anonymous commented
    September 11, 2018 18:36

    +1

  • Nathan Smith commented
    September 11, 2018 18:36

    Wouldn't that be nice. As a new user I was expecting this feature to be present. Perhaps soon? Thanks.

  • Pavel Evstigneyev commented
    September 11, 2018 18:36

    +1 demanding. Digitalocean, do you have enough developers?

  • Dave commented
    September 11, 2018 18:36

    Funny, I just went to the first comment in this thread, and saw that it's by Moisey Uretsky, a Digital Ocean co-founder. He wrote on April 30 2012 that “This will most likely be finished by late May.” That one month has passed, along with thirty-six others. I actually went to LinkedIn to see if Moisey had gone on to some other company a few years ago, but he's still there.

  • Dave commented
    September 11, 2018 18:36

    Guys, this is essential. If you don't support teams you don't support businesses. And if you don't support businesses this is a hobby. Take it seriously! It has so much potential.

  • John Crenshaw commented
    September 11, 2018 18:36

    Even a basic level of this would be extremely helpful for reasons that swing the other way around. In most small and medium businesses the technology workers are different from the owners. I typically encourage my clients to own their own accounts, but that gets sticky when you come to the point of sharing access to those accounts with the technical staff that will actually do things in the accounts. Right now they have to give me the master email and password, which defeats half of the purpose of them owning their own account.

  • Danylo Popov commented
    September 11, 2018 18:36

    Problem: I have clients websites that I support on the same droplet. My clients are companies who want to have invoices.

    Feature: A useful feature will be to make custom invoices so that I will be able to spread the price for droplet among my clients.

  • C commented
    September 11, 2018 18:36

    Whats going on?!

    Planned 1.5 years ago and nothing happened so far? If it takes this long to react to customer requests I'm not so sure how you guys will manage large accounts for my business in the future.

  • Anonymous commented
    September 11, 2018 18:36

    great idea... would boost the reselling

  • Andrei commented
    September 11, 2018 18:36

    Yeap.... extremly useful especially for consultants that just need access to create/manage droplets or DNS settings and not the payments / credit cards.

  • Ted Wood commented
    September 11, 2018 18:36

    Looking forward to this much-needed feature being added. There's only so much that one person can do.

  • Coach Nick commented
    September 11, 2018 18:36

    please add this! :)

  • Anonymous commented
    September 11, 2018 18:36

    I am very surprised that DO does not offer this. It seems like every other company offers this (Linode, Amazon...). Certainly a required feature.

  • Anil Pochiraju commented
    September 11, 2018 18:36

    Is there an ETA on when this will be in place?

  • Mattias Gees commented
    September 11, 2018 18:36

    +1 we want to enable 2 factor auth on our account

  • Steve M commented
    September 11, 2018 18:36

    +1 - this would make it easier to manager our accounts. In particular we want two factor authentication from DO, but having a single login makes that challenging.

  • Jason H commented
    September 11, 2018 18:36

    +1 - would LOVE to enforce 2-factor auth for the admins of our DO account, can't do it with a shared account.

  • David commented
    September 11, 2018 18:36

    +1

  • Andru commented
    September 11, 2018 18:36

    Is there any update / ETA when this might be implemented as this is marked as "planned"?

  • Joshua Kidd commented
    September 11, 2018 18:36

    I would love to see this future soon, it's been at least 2 years since it was suggested.

  • Chris commented
    September 11, 2018 18:36

    I would very much like to see this feature too, or at least the ability add a secondary/emergency contact to a Digital Ocean profile.

  • Ka commented
    September 11, 2018 18:36

    +1

  • Marko Kazhich commented
    September 11, 2018 18:36

    Guys this is a deal breaker, when is this going to be implemented?

  • Seb Wagner commented
    September 11, 2018 18:36

    guys, single user accounts with 2FA is a pain in the arse and leads to lower security in team setups. please get this in asap

  • Samuel Mitchell Finnigan commented
    September 11, 2018 18:36

    We have 10+ people in our Lab using separate DigitalOcean user accounts. A single team account where multiple people can manage SSH keys, and so on, would be excellent. This seems to be a major feature which Amazon AWS has over DigitalOcean.

  • Guillermo Seminario commented
    September 11, 2018 18:36

    We need this as well. Any update?

  • Derek Scruggs commented
    September 11, 2018 18:36

    We really need this as well. Our primary account holder is out of the country and off the grid. We can't create a droplet without getting credentials that are emailed to his account.

  • Bryan commented
    September 11, 2018 18:36

    any news for that?

  • Anonymous commented
    September 11, 2018 18:36

    Essential -- don't want to be the next codespaces.com

  • Peter Kenway commented
    September 11, 2018 18:36

    We really need this feature. This is a major point of exposure for our organization.

  • James Ruffer commented
    September 11, 2018 18:36

    I would just add that it would be nice for logging of the accounts of who logged in and date/time. This would help for PCI/Compliance logging...

  • Timothy Corbett-Clark commented
    September 11, 2018 18:36

    +1 please

  • Peter C. commented
    September 11, 2018 18:36

    This is pretty essential for us as well.

  • Erik Geurts | Aqua Platform commented
    September 11, 2018 18:36

    I agree this is a vital addition.

  • Gareth commented
    September 11, 2018 18:36

    Agreed this would be great to have! Hopefully DigitalOcean can get this added soon!

  • Golden Tullis commented
    September 11, 2018 18:36

    I see a lot of discussion on this issue but no sign of progress since May of last year. This issue is preventing me from properly locking down the single greatest point of exposure and security risk to our system without making ME the greatest point of risk to business continuity.

    I've done what I can to mitigate the risks, but I'm not thrilled with the situation. For a service like DA this should have been available from Day 1. It doesn't need to be fully featured and offer every possible option, but a basic version that would allow multiple logins to have access to the control panel for the same droplets would be a huge start.

  • Alejandro Rodríguez commented
    September 11, 2018 18:36

    I need this feature too. Specially, the possibility to allow team members to make payments with their own credit card/Pay Pal accounts.

  • Miguel Sandoval commented
    September 11, 2018 18:36

    I beg for this feature. Restricting access to billing resources would work for us by now.

  • Vaidik Kapoor commented
    September 11, 2018 18:36

    What's the progress with this? This is so important to so many people.

  • thomas commented
    September 11, 2018 18:36

    +1

  • Anonymous commented
    September 11, 2018 18:36

    This is unfortunately shaping up to be a deal breaker.... and we were going to be doing one of the several hundred dollar per month plans.

  • Anonymous commented
    September 11, 2018 18:36

    +1

    I am using two factor authentication.

    This creates a huge redundancy issue within my organization. If I was to die tomorrow this would be a real head ache for my manager.

  • Daniel Samuels commented
    September 11, 2018 18:36

    +1

  • Rory Herriman commented
    September 11, 2018 18:36

    Need to allow for sub accounts for billing and non-billing resources.

  • Anonymous commented
    September 11, 2018 18:36

    Using cloudpickle.com to get this done for now. Would love to have it in DO control panel itself.

  • Anonymous commented
    September 11, 2018 18:36

    Any update on this ?

  • Henri Binsztok commented
    September 11, 2018 18:36

    We're just a few people, but that's highly needed...

  • Marco van Neerbos commented
    September 11, 2018 18:36

    Yes, separate billing address AND an option to attach the invoice would be very helpful indeed.

  • Louis commented
    September 11, 2018 18:36

    This is a critical feature! I can't believe it is taking so long to get implemented. Any organization with minimal size will need this.

  • Anonymous commented
    September 11, 2018 18:36

    Please help with this.

  • Anonymous commented
    September 11, 2018 18:36

    This is such a key feature. Please prioritize. This is leaving money on the table in my opinion.

  • Anonymous commented
    September 11, 2018 18:36

    +1,000,000,000

  • Andrew Ellis commented
    September 11, 2018 18:36

    Has there been any update to this? We are looking to utilize DO for our application network, but need multiple user login capabilities with permissions.

  • Dave Sanders commented
    September 11, 2018 18:36

    Adding my pleas, and please. :)

  • Don Hoffman commented
    September 11, 2018 18:36

    Yes. Please get this done. The current approach pretty much pushes me to AWS for teams bigger than 2 or 3 developers/testers. As other have said, I would be willing to pay a bit more for the function. It will also result in a higher number of running droplets, since I can have larger team using your service for dev and testing.

  • Anonymous commented
    September 11, 2018 18:36

    Need this for my company account, rather than sharing a single login/password.
    Please implement, it would be great!

  • Jason Niemi commented
    September 11, 2018 18:36

    Can someone please provide an update on this?

  • Ben Fellows commented
    September 11, 2018 18:36

    +1 from me too :)

  • Hugo Firth commented
    September 11, 2018 18:36

    Yes could we please get some update on this? Even a simple system without the power and complexity of IAM would be great!

  • Vinay Pinto commented
    September 11, 2018 18:36

    This is one place where DO falls behind wrt AWS.
    C'mon guys - it's been a while!

  • Cameron Halter commented
    September 11, 2018 18:36

    I too would like to see this happen. Any update from the DO team?

  • IHTSDO Development Team commented
    September 11, 2018 18:36

    Hi Digital Ocean. My team has just set up a number of droplets which we'd all like to be able to log in and configure. In looking up whether or not this is possible I came across this thread which shows you were working on the feature in May last year. Did that work get completed and go live then, or what happened?

    Thanks.

  • Ricardo Falasca commented
    September 11, 2018 18:36

    I still waiting for this feature. Any update about it?

  • Tony commented
    September 11, 2018 18:36

    I just realized that the original comment from Moisey Uretsky (Head of Product, Digital Ocean) fits my use case exactly. Hope the feature eventually gets implemented.

  • Tony commented
    September 11, 2018 18:36

    I was about to request this myself. I'd like this for several reasons, but the particular use case that affected me today is that I'd like to grant another person in our organization billing responsibility for the account without having to share a login.

  • Kevin Ansfield commented
    September 11, 2018 18:36

    This would be great for us too, having to ask clients to create an account and then hand us their username/password isn't a good way to do things.

  • Chris L commented
    September 11, 2018 18:36

    Any update on this feature?

  • Dave Rowe commented
    September 11, 2018 18:36

    If not allowing for invoices, allowing for additional contacts to effectively be CC'd on the emails would be sufficient.

  • Ryan Niebur (Free Geek) commented
    September 11, 2018 18:36

    This would be very useful for our organization as well.

  • dusty doris commented
    September 11, 2018 18:36

    I would love to have this feature for managing servers for clients on Digital Ocean outside of my account. This way they could control my access without giving me their login and full rights.

  • Luc Heinrich commented
    September 11, 2018 18:36

    I'm about to set up some VPS and not having this feature is a deal breaker as far as I am concerned. Is there en ETA ?

  • Anonymous commented
    September 11, 2018 18:36

    Good feature cause if you use droplets in business you'll probably has at least 2 persons to control this and it's bad idea to use one login for this. What progress of this feature? Do you have any ETA date?

  • Dash Bitla commented
    September 11, 2018 18:36

    Moisy,

    From your last comment "This will probably be in place around March-April currently based on our roadmap."

    Is this coming anytime soon?

    Its really really critical for us to move bunch of servers that will be managed by different set of users!

  • Jeffrey A. commented
    September 11, 2018 18:36

    Personally I think this is a bit overkill. DigitalOcean tries to keep everything as simple as possible, with this, stuff could get way more complicated.

  • Ryan Thrash commented
    September 11, 2018 18:36

    Critical, really, for us.

  • Tom Cameron commented
    September 11, 2018 18:36

    This is a big one for us too. We are planning to set up many droplets and its essential we can control access. Its also impractical for all root logins to be emailed to one person.

  • Chris Van Patten commented
    September 11, 2018 18:36

    This is a huge one for us. The ability to have users that can separately manage billing vs. droplets is huge. (And with droplet management, I think it's crucial that you can give users the ability to create/resize droplets, or just access/reboot/destroy them. E.g. commands that cost money vs. those that don't.)

  • Steven Osborne commented
    September 11, 2018 18:36

    I agree, would be very useful for businesses.

  • Ricardo Graça commented
    September 11, 2018 18:36

    I don't think we need absolute control of what each user is allowed to do because generally there are always a couple of actions that are essential for droplet management. I suppose only two types of users would be required (in my case):

    Boss: no restrictions;
    Admin: manage droplets only, meaning ability to create droplets and manage them with no restrictions.

    Bonus points for being able to grant admin access only for certain droplets.

  • Eric commented
    September 11, 2018 18:36

    Ideally every action (view, create, update, delete) for each "page" would have a permission so that we could create rolls/groups to fit our own needs.

  • Moisey Uretsky commented
    September 11, 2018 18:36

    This will probably be in place around March-April currently based on our roadmap.

    In the meantime give us some feedback on how kind of permissions you would like to grant other users and how you would like this to function.

    Thanks

  • filemaniac commented
    September 11, 2018 18:36

    I'm looking for this too!

  • Dash Bitla commented
    September 11, 2018 18:36

    Will this feature be coming anytime soon? I haven't found it yet in the Control panel!

  • Moisey Uretsky commented
    September 11, 2018 18:36

    We're going to be adding this feature after the release of 2.0 to allow users to grant permissions to other users.

  • Anonymous commented
    September 11, 2018 18:36

    I would also very much like this feature. I am setting up web and db nodes for a business and it would be very useful for other people to be able to access the dashboard if I am unavailable.

  • Moisey Uretsky commented
    September 11, 2018 18:36

    We're working on building out an account and sub-user system to allow multiple admins to access the platform and separating out the billing profile.

    This will most likely be finished by late May.