检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
IAM is a basic service for permissions management in Huawei Cloud. It can be used free of charge. You pay only for the resources in your account. For details about IAM, see What Is IAM? For details about cloud service permissions, see Cloud-Service-Level Permissions.
If you have enabled enterprise management, you cannot create an IAM project and can only manage existing projects. In the future, IAM projects will be replaced by enterprise projects, which are more flexible.
APIs using the IAM authentication can be authorized only to apps of the IAM type. Authorizing an API to Apps An API that uses app or IAM authentication can be called only after it is authorized. Authorization can be performed by an API developer or an API caller.
IAM can be used free of charge. You pay only for the resources in your account. For more information, see IAM Service Overview. AOM Permissions By default, new IAM users do not have any permissions assigned.
Table 2 Query parameters Parameter Mandatory Type Description principal_id Yes String Globally unique ID of an IAM Identity Center principal. principal_type Yes String IAM Identity Center principal type. limit No Integer Maximum number of results returned for each request. marker
Making an API Request This section describes the structure of a REST API, and uses the IAM API for obtaining a user token as an example to describe how to call an API. The obtained token is used to authenticate the calling of other APIs.
Perform the following operations to rectify the fault: If you log in as an IAM user, check whether you have the permissions required to perform cache purge and prefetch. If you do not have the required permissions, apply for them from your account administrator.
Figure 8 Viewing permissions Step 2: Create an IAM User IAM users can be created for employees or applications of an enterprise. Each IAM user has their own security credentials, and inherits permissions from the groups it is a member of.
Both an account and its IAM user can create IAM users to manage resources. The Huawei Cloud Enterprise Center allows multiple independent HUAWEI IDs to be associated with each other. Parent topic: Concepts
IAM does not provide APIs for batch querying and modifying personal data. Operation Logs IAM logs all personal data operations, including adding, modifying, querying, and deleting personal data.
IAM can be used free of charge. You pay only for the resources in your account. For more information about IAM, see IAM Service Overview. SFS Permissions By default, new IAM users do not have permissions assigned.
If your Huawei Cloud account does not need individual IAM users, you can skip this section. By default, new IAM users do not have any permissions. You need to add a user to one or more groups, and attach permissions policies or roles to these groups.
Configuring Forcible Backup Policies Forcible backup policies allow IAM users to forcibly back up data to ensure user data accuracy and security and service security.
Company B assigns permissions to one or more of its IAM users to manage company A's resources. Requirements Company B wants to authorize its employees (IAM users) to manage the delegated resources of company A.
If your Huawei Cloud account does not need individual IAM users for permissions management, skip this section. IAM can be used free of charge. You pay only for the resources in your account. For more information about IAM, see Service Overview.
When you use the new domain name, the IAM API for authentication is called, and the Huawei Cloud account and password need to be carried in the request.
Disabling IAM User Login Verification as an Administrator An administrator can disable login verification for an IAM user on the IAM console as follows: In the navigation pane, choose Users. Click Security Settings in the row containing the target user.
For a policy to be delivered to IAM, each time a maximum of 500 IAM users can be added as blocked objects by each account.
IAM is free. You pay only for the resources in your account. For details, see IAM Service Overview. Message & SMS Permissions By default, new IAM users do not have permissions.
If your Huawei Cloud account does not need individual IAM users, you can skip this section. By default, new IAM users do not have permissions assigned. You need to add a user to one or more groups, and assign permissions policies to these groups.
