检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Create a user group on the IAM console and grant the DLI ReadOnlyAccess permission to it. 2 Create a user and add them to the user group. Create a user on the IAM console and add them to the created user group. 3 Log in as the IAM user and verify permissions.
If the permissions granted to an IAM user contain both "Allow" and "Deny", the "Deny" permissions take precedence over the "Allow" permissions.
Figure 1 Going to the IAM user security settings page View the basic information about the IAM user. Modifying Basic Information About an Individual IAM User Log in to the IAM console as the administrator.
All IAM Policies Are in Use Rule Details Table 1 Rule details Parameter Description Rule Name iam-policy-in-use Identifier iam-policy-in-use Description If an IAM policy has not been attached to any IAM users, user groups, or agencies, this policy is noncompliant.
All IAM Roles Are in Use Rule Details Table 1 Rule details Parameter Description Rule Name iam-role-in-use Identifier iam-role-in-use Description If an IAM role has not been attached to any IAM users, user groups, or agencies, this role is noncompliant.
To learn more about how IAM is different from Organizations for access control, see How IAM Is Different from Organizations for Access Control?. This section describes the elements used by IAM custom identity policies and Organizations SCPs.
Create a user group on the IAM console and grant the GeminiDB ReadOnlyAccess permission to GeminiDB. Create an IAM user and add it to the group. Create a user on the IAM console and add it to the user group created in 1. Log in as an IAM user and verify permissions.
Assigning Permissions to an IAM User IAM users created without being added to any groups do not have any permissions. The administrator can assign permissions to these IAM users on the IAM console. The IAM users can then use cloud resources as specified by their permissions.
With IAM, you can: Create IAM users or user groups for personnel based on your enterprise's organizational structure. Each IAM user has their own identity credentials for accessing GeminiDB resources.
Relationship Between IAM Identities and Operators Huawei Cloud IAM provides the following types of identities: IAM users, IAM agencies, cloud service agencies, IAM Identity Center users, and federated users.
Recommended Configuration To grant resource-level permissions to an IAM user, use a bucket policy. Precautions After configuration, the IAM user can download objects using APIs or SDKs.
Using IAM Roles or Policies to Grant Access to GeminiDB Influx API To manage role/policy-based permissions for GeminiDB, you can use Identity and Access Management (IAM). With IAM, you can: Create IAM users for employees based on your enterprise's organizational structure.
Using IAM Roles or Policies to Grant Access to GeminiDB Cassandra API To manage role/policy-based permissions for GeminiDB, you can use Identity and Access Management (IAM). With IAM, you can: Create IAM users for employees based on your enterprise's organizational structure.
Using IAM Roles or Policies to Grant Access to GeminiDB Redis API To manage role/policy-based permissions for GeminiDB, you can use Identity and Access Management (IAM). With IAM, you can: Create IAM users for employees based on your enterprise's organizational structure.
With IAM, you can: Create IAM users or user groups for personnel based on your enterprise's organizational structure. Each IAM user has their own identity credentials for accessing GeminiDB resources.
With IAM, you can: Create IAM users or user groups for personnel based on your enterprise's organizational structure. Each IAM user has their own identity credentials for accessing GeminiDB resources.
With IAM, you can: Create IAM users or user groups for personnel based on your enterprise's organizational structure. Each IAM user has their own identity credentials for accessing GeminiDB resources.
Create an IAM user and add it to the user group. Create a user on the IAM console and add it to the user group created in 1. Log in and verify permissions. Log in to the Organizations console as the IAM user.
Granting Permissions to IAM Users Creating Users and Assigning DLV Permissions Parent topic: Preparatory Work
Granting UCS Permissions to IAM Users Application Scenarios UCS permissions management offers fine-grained control over permissions using IAM and Kubernetes RBAC. It also supports IAM-based fine-grained permissions control and IAM token-based authentication.
