Account and Team Settings
On this page you can view settings for your Redis Cloud account and team. You can also:
- Add or edit your VAT ID
- Change the account Time Zone
- Add a new Relic license key
- Configure Multi-Factor Authentication (MFA)
When you set up SSL/TLS for your account, you must enter the downloadable Redis Labs CA Certificate from this page.
To manage the team of people who have access to the account, click on the “Team” tab and you will be presented with the current list of team members on this account.
- To add more team members, click .
- To edit an existing team member, click .
Team members can have different roles to the account:
- Owner - Can view, create, and edit any settings in the account
- Member - Can view, create, and edit databases
- Viewer - Can view all databases and their configurations (including database secrets)
Team management for GCP Marketplace customers
If you subscribed to Redis Enterprise Cloud using GCP Marketplace, you can manage your team from the IAM section of the GCP console. To grant Redis Cloud access to a GCP user, assign one of these roles to the user:
- Viewer - serviceusage.serviceUsageViewer and redisenterprisecloud.viewer
- Owner - serviceusage.serviceUsageViewer and redisenterprisecloud.admin
Users must log in using SSO to Redis Cloud at least once for them to be added to the team.
Multi-Factor Authentication (MFA)
To reduce the chances of unauthorized access to the Redis Enterprise Cloud admin console, each user can enable MFA to require an authentication code at login. The account owner can also enable MFA enforcement for all users in the account to block users from logging in without MFA.
When MFA is enabled, it forces users to enter their username, password, and an authentication code sent to them by text message or generated by an app on their smartphone. MFA authentication requires a phone that can receive text messages.
Using MFA for a user account
Each user can enable and configure MFA for their user account. The default MFA configuration sends an authentication code by text message to enter when you log in.
To configure MFA for your user account:
- Log into your account.
- In the menu, click on your name.
- In your user profile, click Multi-Factor Authentication.
- Click Activate Now
- Enter your mobile phone number and enter the confirmation code sent to you by text message.
Your account is now configured for MFA. When you log in to the Redis Cloud admin console, you are sent an authentication code by text message.
To change the mobile phone number, select Configure for the text message code and enter the new mobile phone number.
We recommend that you also configure MFA for an Authenticator app as a second method of MFA. If you can’t login to your account because of MFA, contact Support.
If your mobile phone is lost or stolen, make sure you update the MFA configuration to prevent unauthorized logins.
Configuring MFA for an authenticator app
After you configure MFA for text messages, you can also configure MFA to work with a Time-based One-Time Password (TOTP) app such as Google Authenticator. Then when you log in to the admin console, you can select to use either an authentication code sent by text message or an authentication code shown in the Authenticator app for MFA.
To configure MFA for the Authenticator app:
- Install the Google Authenticator app on your phone from the Apple Store or Google Play.
- Add Redis Enterprise Cloud to the app:
- In your profile in your Redis Cloud account, click Multi-Factor Authentication.
- Select Configure for the authenticator app.
- On your phone, open the Authenticator app.
- Select the plus sign and press Scan a barcode.
- Scan the Redis Cloud barcode.
To log in to the Redis Cloud admin console, you can do MFA either with a text message or the Authenticator app. If you use with the Authenticator app, you must open the Authenticator app and enter the Redis Labs code into the Redis Enterprise Cloud login.
To deactivate MFA, go to your profile, select Multi-Factor Authentication, and select Deactivate.
Enforcing MFA for all user accounts
Account owner users can enable MFA enforcement for all users in their account. After MFA is enforced for the account, all users that do not have MFA enabled are required to configure MFA the next time they log in to the Redis Enterprise Cloud admin console.
- When you enable MFA enforcement, users can’t disable MFA for their account.
- When you disable MFA enforcement, users can disable MFA for their account.
To enable MFA enforcement for all user accounts, the account owner must enable MFA enforcement in Settings > Account.