检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
For details, see Creating an IAM User and Assigning DataArts Studio Permissions. Preparations Enable notebooks. If notebooks are disabled, enable them by referring to Managing Notebooks. Create an OBS bucket. Create a VPC, a subnet, and a security group.
If you are using an IAM user account, please confirm whether you are in the admin group. If you are not in the admin group, you will need to (Optional) Creating the rf_admin_trust Agency to your IAM account and complete the following preparation steps.
Related Services IAM GaussDB(DWS) uses Identity and Access Management (IAM) for authentication and authorization. Users who have the DWS Administrator permissions can fully utilize GaussDB(DWS).
Enter the account ID and IAM user ID in the format of Account ID/IAM user ID. To specify multiple IAM users, enter each one on a separate line. An asterisk (*) indicates all accounts or IAM users. NOTE: The account ID and IAM user ID can be obtained on the My Credentials page.
API to obtain the IAM token.
Importing Users from an Agency When your enterprise needs to manage and access resources in multiple accounts, you can create users using IAM Identity Center, and add these users as CodeArts project members.
Visit My Credential at https://console-intl.huaweicloud.com/iam/#/myCredential. Parent topic: Appendix
In addition, the IAM service is provided, achieving access control over DDS resources. Parent topic: Network Security
API for obtaining tokens from IAM CSBS API for creating backups Procedure Obtain the token by following instructions in Making an API Request. Obtain the token by following instructions in Obtaining a Project ID.
API for obtaining tokens from IAM CSBS API for creating backups Procedure Obtain the token by following instructions in Making an API Request. Obtain the token by following instructions in Obtaining a Project ID.
Table 7 results.member_id Parameter Type Description user_id String Globally unique ID of an IAM Identity Center user in the identity source.
Configuration Example Prerequisites You have obtained the endpoint address of the region where IAM and ROMA Connect are deployed. You have obtained the ROMA Connect instance ID as well as the project ID of the region where the instance is located.
Restrictions To delete bucket tags, you must be the bucket owner or have the required permission (obs:bucket:DeleteBucketTagging in IAM or DeleteBucketTagging in a bucket policy).
Then, the IAM users created for the enterprise personnel can be added to different user groups based on their job responsibilities. For the definitions of an account and IAM user, see Basic Concepts.
Developing a Custom Authorizer with FunctionGraph Scenario In addition to IAM and app authentication, APIG also supports custom authentication with your own authentication system, which can better adapt to your business capabilities.
Instance Management Listing Instances Querying the Region Where a Service Instance Is Enabled Obtaining Identity Source Configurations Selecting a Region for Enabling a Service Instance Querying Service Instance Status Enabling an IAM Identity Center Instance Deleting a Service Instance
After creating IAM user groups for employees, you can create enterprise projects on the Enterprise Management console and grant permissions to the user groups in the enterprise projects to implement personnel authorization and permission control.
Table 6 SignInOptionsDto Parameter Type Description origin String Method of redirecting to an application from IAM Identity Center. application_url String URL for receiving application authentication requests.
The token obtained from IAM is valid for only 24 hours. If you want to use one token for authentication, you can cache it to avoid frequently calling.
The token obtained from IAM is valid for only 24 hours. If you want to use one token for authentication, you can cache it to avoid frequently calling.
