How do your users engage the service to get an account, project, or subscription?
Do your end users perform self-service, automated provisioning of accounts, projects, or subscriptions? Why or why not?
Do you end users perform self-service, automated deprovisioning of accounts, projects, or subscriptions when they are done with accounts, projects, or subscriptions? Why or why not?
Do you provide users with rules of behavior they must follow when using the service? Do users need to agree to these terms to use the service? Why or why not?
Do your end users provision their own cloud infrastructure and applications into their accounts, project, or subscriptions? Are security reviews or other reviews required? If so, do these happen before the users provision infrastructure into their accounts, projects, or subscriptions or after?
Do you prevent your end users from purchasing cloud accounts, projects, or subscriptions on their own? If yes, how do you prevent them from purchasing external cloud resources?
Do you restrict your end users to a set of approve VM images and application stacks or do you allow them to launch whatever images and stacks are available on the cloud platform?
How do users and service administrators manage who owns each account, project, or subscription and which users are associated with each account, project, or subscription? Where is that data stored and managed?
How to end users place firewall rule exceptions to expose cloud resources to the Internet and on-premises clients?
How do end users view their charges and bills? Do they view these on the cloud provider platform or in the institutional financial system? Both?