I’m trying to understand the access and security models of the Projects and Custom Extraction Models. Are they tied to the resource’s access/roles control?
Consider this scenario:
- I create 2 different Document Intelligence resources. Let’s call them
DI-A
,DI-B
- I create
Project 1
and connect withDI-A
as the service resource. - I launch Document Studio and using the gear icon in the top right, select the
DI-A
resource - Document Studio home screen shows
Project 1
. This is expected. - Gear icon -> select
DI-B
resource - Document Studio home screen still shows
Project 1
. I would not expect to see the project because I’m connected toDI-B
resource, notDI-A
Why is this happening? If I wanted to create two different DI resources groups to have different projects, users, and access controls, how can I do this?
And related question: If I train custom models from these projects, are they tied to the resources and their IAMs access policies? Or are they open for anyone within my organization (?)