About EIM

The Elastic Identity Management (EIM) service enables you to manage identities, groups, policies, and secondary credentials in your OUTSCALE account.

The EIM API ensures a partial compatibility with the Identity and Access Management (IAM) API of Amazon Web Services (AWS).

General Information

As the owner of an OUTSCALE account (root user), you have unrestricted permissions on all the resources of your account.

In addition, the EIM service enables you to create sub-users of the account (EIM users), with restricted permissions. EIM users have their own sets of access keys, distinct from those of the root user. For more information, see About EIM Users and Managing Access Keys for EIM Users.

EIM users can be organized into EIM groups to make their permissions easier to manage. For more information, see About EIM Groups.

The permissions themselves are managed through EIM policies, which you can attach to EIM users or EIM groups. Permissions consist in being allowed to run specific API methods on the OUTSCALE account. For more information, see About Policies.

EIM users are not OUTSCALE accounts and must be used for governance and security purposes only. Indeed, resources, quotas, and consumption are considered at the level of the OUTSCALE account, rather than at the level of individual EIM users.

An EIM user is a resource that belongs to the OUTSCALE account. This resource must be considered as a set of credentials whose accesses are limited by the EIM policies that are applied to it.


EIM is compatible with the following OUTSCALE services:

Service Compatibility



Flexible Compute Unit (FCU)


Load Balancer Unit (LBU)


Elastic Identity Management (EIM)


Internal Call Unit (ICU)




OUTSCALE Object Storage (OOS)


Cockpit v2


Related Pages

AWS™ and Amazon Web Services™ are trademarks of Amazon Technologies, Inc or its affiliates in the United States and/or other countries.