检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Obtaining Account, IAM User, Group, Project, Region, and Agency Information Obtaining Account, IAM User, and Project Information Using the console On the Huawei Cloud homepage, click Console in the upper right corner.
When using a token for authentication, cache it to prevent frequently calling the IAM API used to obtain a user token. Ensure that the token is valid when you use it. Using a token that will soon expire may cause API calling failures.
", "name": "IAMUser", "description": "IAM User Description", "areacode": "", "phone": "", "email": "***@***.com", "status": null, "enabled": true, "pwd_status": false, "access_mode": "default",
Appendix Status Code Error Codes Obtaining a Project ID Obtaining an Enterprise Project ID Obtaining a Firewall ID Obtaining Account, IAM User, Group, Project, Region, and Agency Information Region Information
For details about how to create and grant permissions to a user group using IAM, see Creating a User Group and Assigning Permissions. For details about how to grant permissions to a user using IAM, see Assigning Permissions to an IAM User.
If your Huawei Cloud account does not need individual IAM users, then you may skip over this section. By default, new IAM users do not have any permissions assigned. You need to add a user to one or more groups, and assign permissions policies to these groups.
User An IAM user is created using an account to use cloud services. Each IAM user has its own identity credentials (password and access keys). Region Regions are divided based on geographical location and network latency.
Prerequisites To use an IAM user, ensure the IAM user has been granted the BSS Administrator and CFW FullAccess permissions. For details, see Creating a User Group and Granting Permissions. Constraints CFW can be used only in the region selected during purchase.
Prerequisites To use an IAM user, ensure the IAM user has been granted the BSS Administrator and CFW FullAccess permissions. For details, see Creating a User Group and Granting Permissions. Constraints CFW can be used only in the region where it was purchased.
If your Huawei Cloud account does not require individual IAM users for permissions management, skip this section. IAM can be used free of charge. You pay only for the resources in your account. For more information about IAM, see What Is IAM?
Prerequisites You have granted the BSS Administrator and CFW FullAccess permissions to the IAM user. For details, see Creating a User Group and Granting Permissions. Purchasing and Querying a Standard Edition Firewall Log in to the management console.
With IAM, you can: Create IAM users for employees in different departments based on your organizational structure. Each IAM user has their own security credentials used to access CFW resources. Grant only the permissions required for users to perform a task.
Replace the italic fields in bold with the actual values. accountid: ID of the account to which the IAM user belongs. username: IAM username to be created. email: email address of the IAM user. **********: password of the IAM user.
Related Services IAM Identity and Access Management (IAM) provides the permission management function for CFW. Only users who have Tenant Administrator permissions can perform operations such as authorizing, managing, and detect cloud assets using CFW.
You can obtain the region ID by referring to Obtaining the Names and IDs of an Account, IAM User, Project, User Group, Region, and Agency.
You can obtain the region ID by referring to Obtaining the Names and IDs of an Account, IAM User, Project, User Group, Region, and Agency.
{Endpoint} is the IAM endpoint and can be obtained from Regions and Endpoints. For details about API authentication, see Authentication.
Identity Authentication and Access Control CFW works with Identity and Access Management (IAM). IAM permissions define which actions on your cloud resources are allowed and which actions are denied, to control access to your resources.
You can obtain the region ID by referring to Obtaining the Names and IDs of an Account, IAM User, Project, User Group, Region, and Agency.
