检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
With IAM, you can: Create IAM users or user groups for personnel based on your enterprise's organizational structure. Each IAM user has their own identity credentials for accessing SWR resources.
Obtaining Information About Account, IAM User, Group, Project, Region, and Agency Obtaining Account, IAM User, and Project Information Using the console On the Huawei Cloud homepage, click Console in the upper right corner.
Parent topic: Using CTS to Audit IAM Identity Center Operations
APIs using the IAM authentication mode can be authorized only to apps of the IAM type. IAM: APIs using IAM authentication can be authorized to apps of this type. The name of an app of the IAM type is fixed at the a Huawei account.
Precautions If an IAM user is authorized for an action through both IAM and EPS, the authorization result is subject to IAM configuration. Examples: 1.
An account can allocate funds to IAM users so that IAM users can manage resources independently. Both an account and its IAM user can create IAM users. An account can only manage its own IAM users but cannot manage the IAM users of other accounts.
What Are the Differences Between IAM Users and Enterprise Member Accounts? See What Are the Differences Between IAM Users and Enterprise Member Accounts? Parent topic: Common Issues
Why Can't an IAM User View Media Files Uploaded by the Account on the Console? It is possible is that you use the system policy to isolate media. The IAM user and the account are not in the same group. You are advised to add the IAM user to the group of the account.
How Do I Log In to COC as a Non-Common IAM User? You can log in to COC as a common IAM user, IAM federated user (including IAM user in SSO mode and virtual user in SSO mode), and IAM Identity Center user.
Do not use the involved domain names to call IAM APIs. 2. Access IAM APIs through public DNS resolution domain names without whitelist or firewall policies. Recommendations for affected users: 1.
An example is given as follows: obs:*:*:object:my-bucket/my-object/* (indicating any object in the my-object directory of bucket my-bucket) Parent Topic: Configuring IAM Permissions
Granting Permissions Using IAM Agency Authorization
Log in to Huawei Cloud as an IAM user.
With IAM, you can use your Huawei Cloud account to create IAM users, and assign permissions to the users to control their access to specific resources.
After you agree to the authorization, IoTDA creates an agency named iotda_admin_trust in IAM, after the authorization is successful, you can view the created agency in the agency list on the IAM console. Parent topic: Granting Permissions Using IAM
Creating a User and Granting Permissions This section describes the fine-grained permissions management provided by IAM for your AOM. With IAM, you can: Create IAM users for employees based on the organizational structure of your enterprise.
Interconnecting an MRS Cluster with OBS Using an IAM Agency Interconnecting an MRS Cluster with OBS Using an IAM Agency Configuring the Policy for Clearing Recycle Bin Directories of MRS Cluster Components Example for Interconnecting an MRS Cluster with OBS Configuring Fine-Grained
Replace {user_name} and {password} respectively with the username and password of the IAM server. {project_id}: The project ID.
IAM username or email address Alice IAM username or email address entered during the user creation. You can obtain the IAM username and IAM user's initial password from the administrator. IAM user password ******** Password of the IAM user, rather than the account.
Developing API Calling Authentication (IAM) Token Authentication AK/SK Authentication Parent topic: Developer Guide for Service Integration
