Home » MailStore Cloud Help » Cloud Concepts: User Management

Cloud Concepts: User Management

• Domains: A domain is used to identify a customer within MailStore Cloud. It cannot be used outside of MailStore Cloud, i.e. one cannot send mails to it or use the domain in your browser. Users will have usernames in the form of <username>@<domain> with the domain being unique to the tenant they belong to.
  • Domains can be created manually or be synchronized from Microsoft 365 or Google Workspace.
  • One domain is created during provisioning for each customer, this domain cannot be changed or removed.
  • Multiple users can be assigned to the same domain. A user belongs to exactly one domain.
• Users: Every person who wants to access MailStore Cloud must have a user. A user belongs to exactly one tenant.
  • Users can be created manually or they can be synchronized from a directory service.
• Groups: Groups are used to organize users.
  • They can be either created manually or be synchronized from a directory service.
  • Roles are assigned to groups. Users will get the roles of the groups they are part of.
  • A user can be in multiple groups and a group can contain multiple users.
  • Manually created users can be manually added to manually created and synchronized groups. Synchronized users can be manually added only to manually created groups, but not to synchronized groups.
• Roles: MailStore Cloud has a role-based rights managed, i.e. roles define what a user is allowed to do within a tenant. For example to access the Admin Access, a user has to have the role “Admin”.
  • Roles are assigned to groups and a user has all the roles of all groups they belong to. A user that is not part of any group does not have any roles.
  • To access archived mails, a user needs the “Reader” role and have been granted access to a mailbox. Both preconditions must be met for the user to be able to access archived mails.