Setting up Cloud Pak for Data as a Service for your organization

Cloud Pak for Data as a Service is designed for collaboration among many users. First, you set up your Cloud Pak for Data as a Service and IBM Cloud accounts and provision services. Then, you add the users from your organization so that they can share services and resources that are provisioned for the account.

These steps describe the typical tasks for an IBM Cloud account owner to set up Cloud Pak for Data as a Service for an organization:

  1. Sign up for Cloud Pak for Data as a Service.
  2. Set up a paid IBM Cloud account to provision paid service plans.
  3. Provision and configure the IBM Cloud Object Storage service for project and catalog storage.
  4. Provision or upgrade other services for Cloud Pak for Data as a Service.
  5. Add non-administrative users to the IBM Cloud account and assign user roles so that they can access the account’s resources.
  6. Add administrative users to the IBM Cloud account.
  7. Assign the Watson Knowledge Catalog service administrator role to non-administrative users who need to create catalogs and governance artifacts.
  8. Set the number of authorized users for Watson Studio to the number of users you added to your account.

You might need to skip steps, add other steps, or complete the steps in a different order.

Step 1: Sign up for Cloud Pak for Data as a Service

You can sign up for a free version of Cloud Pak for Data as a Service and then upgrade it in Step 2.

Sign up for Cloud Pak for Data as a Service:

  1. Go to the Try Cloud Pak for Data as a Service page.
  2. If you want to create your services in a different IBM Cloud service region than the one selected by default, select a different region.
  3. If you don’t have an IBM Cloud account, create one.
  4. On the Select account screen, select the account and resource group where you want to use Cloud Pak for Data as a Service.

You must have a paid IBM Cloud account to provision paid service plans. If you already have a paid account, skip this step.

You have these choices for your paid IBM Cloud account:

  • Cloud Pak for Data as a Service subscription: You commit to a minimum spending amount for a certain period and receive a discount on the overall cost. You can provision paid plans for only the services in the Cloud Pak for Data as a Service services catalog.
  • Pay-As-You-Go: You pay only for billable services that you use, with no long-term contracts or commitments. You can provision paid plans for all services in the IBM Cloud services catalog, which includes the services in the Cloud Pak for Data as a Service services catalog.

To upgrade your IBM Cloud account to a paid account:

  1. Log in to Cloud Pak for Data as a Service and then click Upgrade in the header.
  2. On the Services page of your Settings, choose the type of account:
    • To set up a Cloud Pak for Data as a Service subscription account:
      1. Click Contact sales in the Cloud Pak for Data subscription section.
      2. Select your country or a country near you, enter a message for IBM Sales, and click Submit. An IBM Sales person will contact you and help you set up a subscription. After your subscription is active, you can provision the services you need with paid plans.
    • To set up a Pay-As-You-Go account:
      1. Click Enter billing information in the Pay-As-You-Go section.
      2. On the Account settings page of your IBM Cloud account, enter your billing information. You can provision services immediately.

Step 3: Provision and configure IBM Cloud Object Storage

Projects and catalogs in Cloud Pak for Data as a Service require an IBM Cloud Object Storage instance for storage. You need to provision only one instance and then generate the administrative key. You can then enable storage delegation for your IBM Cloud Object Storage instance so that all Cloud Pak for Data as a Service users can create projects and catalogs without having administrative permissions for the IBM Cloud Object Storage service.

If you already have an IBM Cloud Object Storage instance, skip to the storage delegation step.

To provision IBM Cloud Object Storage:

  1. From the Cloud Pak for Data as a Service main menu, select Services > Service catalog.
  2. Select Cloud Object Storage.
  3. Choose a pricing plan and the resource group for Cloud Pak for Data as a Service.
  4. Click Create to provision the Cloud Object Storage instance.

To generate the required administrative key for your IBM Cloud Object Storage instance:

  1. From the Cloud Pak for Data as a Service main menu, select Projects > View all projects and then click New project.
  2. Specify to create an empty project.
  3. Enter a project name.
  4. Select the IBM Cloud Object Storage instance you just created.
  5. Click Create. The administrative key is generated and you can delete the project.

To enable storage delegation:

  1. From the Cloud Pak for Data as a Service main menu, select Administer > Storage Delegation.
  2. Enable storage delegation for projects and catalogs for the Cloud Object Storage instance.
    IBM Cloud Object Storage delegation

For more information, see Configuring Cloud Object Storage for project and catalog creation.

Step 4: Provision or upgrade other services

You can provision or upgrade other services from the Cloud Pak for Data as a Service services catalog.

To provision or upgrade services:

  1. From the Cloud Pak for Data as a Service main menu, select Services > Services catalog.
  2. Click the service that you want to provision to see the plan page. If you already have a service instance, your existing instance information appears. You can upgrade the plan for the service from this page.
  3. Select the plan you need and click Create. When the service instance is created or upgrade, the Service instances page appears.
  4. Click Add service to return to the services catalog and provision another service.

Step 5: Add non-administrative users to your IBM Cloud account

You can invite users to your IBM Cloud account with non-administrative roles. This step shows how to add users with editor access to all services in a specific resource group. To understand your options for user permissions, see IBM Cloud docs: What is IBM Cloud Identity and Access Management?.

Editor access to services provides these permissions within Cloud Pak for Data as a Service:

  • Become collaborators in project or catalogs.
  • Create projects, if storage delegation is enabled for projects.
  • Create catalogs, if storage delegation is enabled for catalogs and the user is granted the additional role of Watson Knowledge Catalog service administrator.
  • Create instances of provisioned services, but not provision new services. For example, users can create analytic dashboards by using an existing Cognos Dashboard Embedded service from the account.

Users must have existing IBMids. If the invited user does not already have an IBM Cloud account, the user receives an email to complete the sign-up process.

To add users with editor access to all services in a specific resource group to your account:

  1. From Cloud Pak for Data as a Service, click Administer > Access (IAM). The Access (IAM) Overview page in your IBM Cloud account opens in a separate window.
  2. Click Users in the navigation pane.
  3. On the Users page, click Invite users+.
  4. Enter one or more existing user IBMids. You can add multiple users and the subsequent settings apply to all of them.
  5. Expand the Assign users additional access section.
  6. Select IAM services and select these values:
    • From the What type of access do you want to assign? list, select All Identity and Access enabled services.
    • From the resource group list, select the resource group name that you want to use for Cloud Pak for Data as a Service, for example, Resource group: default.
      Type of access and resource group
    • From the Region list, select All regions.
    • In the Platform access section, select Editor.
    • In the Service access section, select Writer.
    • In the Resource group access section, select Viewer and Editor. You might need to click View all to see the Editor option.
      Settings for platform, service, and resource group access
  7. Click Add + and then click Invite.

Your users can now access your account and use the services in the account.

Step 6: (Optional) Add administrative users to your IBM Cloud account

You can add administrative users with administrative roles for IAM and for account management with these permissions:

  • Provision new services.
  • Upgrade services.
  • Add users to the IBM Cloud account.

To add a user as an IBM Cloud account administrator:

  1. Follow the steps to add a non-administrative user, except change these settings:
    • In the Platform access section, select Administrator.
    • In the Service access section, select Manager.
  2. Click Invite.
  3. Next, add account management permissions. Click the user’s name, then Access Policies.
  4. Click Assign access and then Assign access to account management services.
  5. From the What type of access do you want to assign? list, select All Account Management Services.
  6. In the Platform access section, select Administrator and click Add.
  7. Click Assign.

Step 7: Assign the Watson Knowledge Catalog service administrator role

By default, IBM Cloud account owner and administrators are the only users who can create catalogs and governance artifacts with the Watson Knowledge Catalog service. You can give a non-administrative user permission to create catalogs and governance artifacts by assigning the Watson Knowledge Catalog service administrator role.

To assign the Watson Knowledge Catalog service administrator role:

  1. Choose Administer > Catalogs from the main menu.
  2. Click Access Control and click a user name.
  3. Select the Admin role for the Watson Knowledge Catalog service.

For more information, see Managing your Watson Knowledge Catalog service.

Step 8: Set the number of authorized users for Watson Studio

If you have a paid Watson Studio plan, set the number of users that you added to your IBM Cloud account.

To set the number of authorized users for Watson Studio:

  1. From the Cloud Pak for Data as a Service main menu, select Administer > Authorized Users.
  2. Adjust the number on the Authorized Users screen.

For more information, see Managing authorized users for Watson Studio.

Learn more