检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
When multiple users within an enterprise need to use CBR, the enterprise administrator can use IAM to create IAM users and control these users' access to CBR resources.
The following shows part of the response body for the API used to create an IAM user. { "user": { "id": "c131886aec...
name "password": "********", // IAM user password "domain": { "name": "domainname" // Name of the account to which the IAM user belongs } } } }, "scope
Creating a User and Granting CBR Permissions This section describes how to use IAM to implement fine-grained permissions control for your CBR resources. With IAM, you can: Create IAM users based on your enterprise's organizational structure.
You can obtain the IAM username and IAM user's initial password from the administrator. In this example, the IAM username of the O&M personnel is Alice. IAM user password Password of the IAM user, rather than the account. Click Log In. The IAM user logs in to Huawei Cloud.
Authorization Information Each account has all the permissions required to call all APIs, but IAM users must be assigned the required permissions.
To ensure account security, create Identity and Access Management (IAM) users and grant them permissions for routine management. User An IAM user is created by an account in IAM to use cloud services. Each IAM user has its own identity credentials (password and access keys).
Introduction You can use Identity and Access Management (IAM) for fine-grained permissions management of your CBR resources. If your HUAWEI ID does not need individual IAM users, you can skip this section. With IAM, you can control access to specific Huawei Cloudcloud resources.
Policies that contain actions for both IAM and enterprise projects can be used and applied for both IAM and Enterprise Management. Policies that contain actions only for IAM projects can be used and applied to IAM only.
Configuring Forcible Backup Policies Forcible backup policies allow IAM users to forcibly back up data to ensure user data accuracy and security and service security.
To learn more about how IAM is different from Organizations for access control, see How IAM Is Different from Organizations for Access Control?. This section describes the elements used by IAM custom identity policies and Organizations SCPs.
IAM is a global service. You can create an IAM user using the endpoint of IAM in any region.
Agent Installation Failed with Message "Incorrect IAM authentication information" Returned Symptom: The Agent installation failed, and the message "Incorrect IAM authentication information" was returned.
Authorization Information Each account has all the permissions required to call all APIs, but IAM users must be assigned the required permissions.
Authorization Information Each account has all the permissions required to call all APIs, but IAM users must be assigned the required permissions.
Access Control You can use IAM to control access to your CBR resources. Table 1 CBR access control Method Description Reference Permissions management IAM permissions IAM permissions define which actions are allowed or denied on your cloud resources.
Authorization Information Each account has all the permissions required to call all APIs, but IAM users must be assigned the required permissions.
IAM provides identity authentication, permissions management, and access control, helping you to control access to CBR resources. If your Huawei Cloud account does not require IAM for permissions management, you can skip this section. IAM is a free service.
Authorization Information Each account has all the permissions required to call all APIs, but IAM users must be assigned the required permissions.
User Permissions If you need to assign different permissions to employees in your enterprise to access your CBR resources, IAM is a good choice for fine-grained permissions management.
