Controlling access through IAM -- Monitoring bandwidth metering, bandwidth pools.

[nikolayilkov]

Which topic are you reporting about?

Monitoring bandwidth metering, bandwidth pools.

What do you think needs to be updated?

are there any access controls for seeing that page (classic-bandwidth/pools) or is it expected that any user, even with NO IMS permissions, would be able to see data on that page?

Dear Team,

This is Nik Ilkov with ACS_Security Team - nikolayilkov@ibm.com.

This post is with regard to the confirmed fact that "we have no permission associated with viewing network bandwidth pools or their usage data."

Internal communication:

#iam-issues
https://ibm-cloudplatform.slack.com/archives/C3C46LY7N/p1759749328016529

investigation moved here

#console-issues
https://ibm-cloudplatform.slack.com/archives/C6EA537U3/p1759755407078389

#ibmcloud-bandwidth
https://ibm-cloudplatform.slack.com/archives/CLS26UZA5/p175977515208365

referenced screencaps:

Important note -- this 'issue' was raised by a customer and reproduced in a test lab by our team. Repro steps:

"

• I created an IAM account @gmail.com without giving any priviledge.
• But when I got the URL https://cloud.ibm.com/classic-bandwidth/pools, I can access the page and see the details.
• I don't think this should be happened in a no-permission IAM account.
  "

Thank you for your attention to this!

Best regards,

Nik Ilkov
Security Support Engineer
IBM Cloud Support

Anything else?

This is a request our internal team reviews the IAM permissions to view details on page URL https://cloud.ibm.com/classic-bandwidth/pool - thank you!

[austinmama]

@nikolayilkov This is a development issue. The issue you opened is only for documentation. If you believe this is an error in the code, please contact the appropriate Slack channel. If you require names of who might be able to assist, please Slack me.