检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Cloud Service Permissions With IAM, you can control resource access for users and user groups based on enterprise projects. For details about cloud services supported by EPS, see Supported Cloud Services.
DLI supports importing data from OBS buckets shared by IAM users under the same tenant, but not from OBS buckets shared by other tenants. This ensures data security and isolation.
Prerequisites The IAM users have been synchronized in advance. You can do this by clicking Synchronize next to IAM User Sync on the Dashboard page of the cluster details. You have logged in to MRS Manager. For how to log in, see Accessing MRS FusionInsight Manager.
Sending an Email Prerequisites Your Huawei account or IAM user has passed the enterprise real-name authentication. You have enabled KooMessage. For details, see "Enabling KooMessage" in the user guide. You have contacted operations personnel to configure email information.
Creating an APIG (Dedicated) Trigger APIG flow triggers support only IAM authentication. Ensure that you have created a dedicated gateway before this operation. For details, see Buying a Dedicated Gateway.
If the error message "Incorrect IAM authentication information: x-auth-token not found" and error code "APIG.0301" are displayed, X-Auth-Token is not included in the request header.
If your Huawei Cloud account does not need individual IAM users, then you may skip over this section. By default, new IAM users do not have any permissions assigned. You need to add a user to one or more groups, and assign permissions policies to these groups.
The token obtained from Identity and Access Management (IAM) is valid for only 24 hours. If you want to use the same token for authentication, cache it to avoid frequent calling of the IAM API.
IAM users can call the IAM API for Obtaining a Temporary Access Key and Security Token Through a Token. IAM users can also send the policy parameter to request for temporary policy's permissions.
Authorization Scope: A custom policy can be applied to IAM projects or enterprise projects or both. Policies that contain actions supporting both IAM and enterprise projects can be assigned to user groups and take effect in both IAM and Enterprise Management.
Authorization Scope: A custom policy can be applied to IAM projects or enterprise projects or both. Policies that contain actions supporting both IAM and enterprise projects can be assigned to user groups and take effect in both IAM and Enterprise Management.
If your account does not need individual IAM users, then you may skip over this section. By default, new IAM users do not have any permissions assigned. You need to add a user to one or more groups, and assign permissions policies to these groups.
Only the RESTful requests that have been authenticated by IAM Token are supported. Parameters Table 1, Table 2, and Table 3 describe the parameters of the Rest Client node. Table 1 Parameters of RestAPI nodes Parameter Mandatory Description Node Name Yes Name of the node.
Only the RESTful requests that have been authenticated by IAM Token are supported. Parameters Table 1, Table 2, and Table 3 describe the parameters of the Rest Client node. Table 1 Parameters of RestAPI nodes Parameter Mandatory Description Node Name Yes Name of the node.
Resource Isolation Each Huawei Cloud account or IAM account has a default workspace, which can be used to view all resources created by the current account on Huawei HiLens. The table below lists resources that are isolated between different workspaces.
Enter the account ID and IAM user ID in the format of Account ID/IAM user ID. To specify multiple IAM users, enter each one on a separate line. An asterisk (*) indicates all accounts or IAM users. NOTE: The account ID and IAM user ID can be obtained on the My Credentials page.
API to obtain the IAM token.
The validity period of a token obtained from IAM is 24 hours. If you want to use a token for authentication, cache it to avoid frequently calling the IAM API. Procedure Obtain the token by referring to Authentication. Query the list of metrics that can be monitored.
If you are using an IAM user account, please confirm whether you are in the admin group. If you are not in the admin group, you will need to (Optional) Creating the rf_admin_trust Agency to your IAM account and complete the following preparation steps.
Data Protection Technologies For data protections, you are advised to protect Huawei Cloud account credentials and use IAM to set up individual user accounts. In this way, each user is given only the permissions necessary to fulfill their job duties.
