Seeking help in understanding Access licensing using In terms of Zero Trust > My Team > " Your users: Showing 1-5 of 5"
Use case:
I have uptime kuma running on a private VM with cloudflare tunnels and want any of the 8 employees to be able to check anytime status and dashboards on that app. So I have a working CF tunnel and a CF Access application with POLICY rule ALLOW and user with email ending in @MYDOMAIN.com.
Do I need to pay for a batch of user seats?
Seems like you get 5 users on free plan but since Iāve paid for 2, Iām by upgrading to a se of paid licenses Iām limited to just 2 and not 5. Further, thereās another view in Zero Trust that says I get 50 users but have no idea if this relates to the same licensing and access?
I tested with several test users and have manually from this interface, revoked and REMOVED the test users, but they remain greyed out NOT REMOVED and I see no other way to add another user if Iām trying to limit my use of this to just 5 users. I cancelled my paid users as I saw no benefit of this and further by paying for users I donāt even get 5 anymore as the email code screen then says Iāve used all my licenses.
Note: UI message upon removal:
Remove dan?
End the userās active session and remove them from the user registry.
This will mark the user as Inactive, and they will no longer occupy a seat unless they re-authenticate. To disable a userās ability to authenticate, modify your Access and device enrollment policies.
If I then try to access a self hosted application, wehre iām using 2 and have 3 greyed out users, and I try to access where email includes ending in @MYDOMAIN.com, yet if I again try to use an new person [email protected], I get message
" Your Cloudflare Access organization has used all of its available seats this month."
QUESTION: What am I doing wrong in the setup where I simple want a few people at my small company to be able to access my self hosted apps using the emails ending in āinclude rule.ā as it seems iād need to be paying for a big batch of licenses (to potentially include all 8 people with emails @MYDOMAIN.com to make this work.
I canāt believe that I would have to pay $7/month for every potential person [email protected] to allow access to just some small random service.
REQUEST FOR RESOURCES
Is there a good explainer video on this as Iāve read and also used AI to walk me through all the cloudflare docs and neither me or gpt understand how to get this working. That said, I totally understand that at the end of the day, Cloudflare wants me to pay for all 8 people ultimately. But for simple access codes based on emails at a domain (i love this potential) I just must be missing something.
Adding resources I reviewed but didnāt get my answer but if it helps others - this is what Iāve reviewed:
and