# Domains and user access in Amazon DataZone
<a name="working-with-domains-users"></a>

This section describes how you can create and manage domains and user access in Amazon DataZone. 

An Amazon DataZone domain is the organizing entity for connecting together your assets, users, and their projects. With Amazon DataZone domains, you have the flexibility to reflect the data and analytics needs of your organizational structure, whether it's creating a single Amazon DataZone domain for your enterprise or multiple datazone; domains for different business units or teams. 

This section also descibes managing user access to the Amazon DataZone console and Amazon DataZone portal. 

For more information, see [Amazon DataZone terminology and concepts](datazone-concepts.md).

**Topics**
+ [Create Amazon DataZone domains](create-domain.md)
+ [Edit Amazon DataZone domains](edit-domain.md)
+ [Delete Amazon DataZone domains](delete-domain.md)
+ [Enable IAM Identity Center for Amazon DataZone](enable-IAM-identity-center-for-datazone.md)
+ [Disable IAM Identity Center for Amazon DataZone](disable-IAM-identity-center-for-datazone.md)
+ [Manage users in the Amazon DataZone console](user-management-console.md)
+ [Manage user permissions in the Amazon DataZone data portal](user-management-portal.md)
+ [Restricting access to Amazon DataZone](user-management-portal-restricting-programmatic-access.md)
+ [Upgrade Amazon DataZone domains to Amazon SageMaker unified domains](upgrade-domain.md)