Docs

All documentation
Connectivity Cellular, LPWAN, and satellite
- Cellular
  - Cellular (Soracom Air)
  - SIM Management
- LAN & WiFi
  - Soracom Arc
- LPWAN
  - LPWAN / LoRaWAN
- Sigfox
  - Sigfox
- Satellite
  - Satellite
Hardware Devices and modules
Platform Console, configuration, account, billing
- Console & Navigation
  - Console
- Configuration
- SIM & Fleet Ops
- Account & Access
- Billing
  - Usage & Invoices
Cloud Integration Route data to cloud services
- Data Entry Point
  - Data Entry Point
- Protocol Conversion & Forwarding
  - Protocol Conversion & Forwarding
- Serverless Triggers
  - Serverless Triggers
- Direct Cloud Delivery
  - Direct Cloud Delivery
- Inline Data Transformation
  - Inline Data Transformation
- Video Streaming
  - Video Streaming
Data & Analytics Store, visualize, and query
- Data Collection & Storage
  - Soracom Harvest
- Dashboards & Alerts
  - Dashboards & Alerts
- Data Analytics
  - Data Analytics
- IoT Automation
  - IoT Automation
Network & Security Private networking and VPN
- VPG Sub-features
- Credential Provisioning
  - Credential Provisioning
- SIM Authentication
  - SIM Authentication
Device Management Firmware, provisioning, inventory
- Fleet Management
  - Fleet Management
- Device Commands
  - Device Commands
- Remote Access
  - Remote Access

Documentation navigation

Docs

All documentation
Connectivity Cellular, LPWAN, and satellite
- Cellular
  - Cellular (Soracom Air)
  - SIM Management
- LAN & WiFi
  - Soracom Arc
- LPWAN
  - LPWAN / LoRaWAN
- Sigfox
  - Sigfox
- Satellite
  - Satellite
Hardware Devices and modules
Platform Console, configuration, account, billing
- Console & Navigation
  - Console
- Configuration
- SIM & Fleet Ops
- Account & Access
- Billing
  - Usage & Invoices
Cloud Integration Route data to cloud services
- Data Entry Point
  - Data Entry Point
- Protocol Conversion & Forwarding
  - Protocol Conversion & Forwarding
- Serverless Triggers
  - Serverless Triggers
- Direct Cloud Delivery
  - Direct Cloud Delivery
- Inline Data Transformation
  - Inline Data Transformation
- Video Streaming
  - Video Streaming
Data & Analytics Store, visualize, and query
- Data Collection & Storage
  - Soracom Harvest
- Dashboards & Alerts
  - Dashboards & Alerts
- Data Analytics
  - Data Analytics
- IoT Automation
  - IoT Automation
Network & Security Private networking and VPN
- VPG Sub-features
- Credential Provisioning
  - Credential Provisioning
- SIM Authentication
  - SIM Authentication
Device Management Firmware, provisioning, inventory
- Fleet Management
  - Fleet Management
- Device Commands
  - Device Commands
- Remote Access
  - Remote Access

SAM Users & Roles

SAM (Soracom Access Management) lets you create sub-accounts with granular permissions under your operator account. Define roles with specific API and console access levels, then assign them to team members — so each person only has access to the resources and actions they need.

What it does

Sub-accounts: Create individual user accounts under a single operator for team collaboration
Role-based access control: Define roles with fine-grained permissions for API operations and console features
Permission policies: Write JSON policies that allow or deny specific actions on specific resources
API key management: Generate API keys scoped to individual SAM users for programmatic access
Separation of duties: Restrict billing access, SIM management, or configuration changes to authorized users

Common use cases

Giving developers read-only access to production SIM data
Restricting billing and payment management to finance team members
Creating a CI/CD service account with only the permissions needed for deployments

Operators — Root account that owns SAM users
MFA & Security — Enforce multi-factor authentication on SAM users
Audit Logs — Track actions performed by each SAM user

SAM Users & Roles

What it does

Common use cases

Related