检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
The following is an example of a deny policy: { "Version": "1.1", "Statement": [ { "Effect": "Deny", "Action": [ "obs:object:PutObject" ] } ] } Parent Topic: Configuring IAM Permissions
Creating a User and Granting ECS Permissions Use IAM to implement fine-grained permissions control over your ECSs. With IAM, you can: Create IAM users for personnel based on your enterprise's organizational structure.
Creating a User and Granting DNS Permissions You can use IAM for fine-grained permissions control for your DNS. With IAM, you can: Create IAM users for personnel based on your enterprise's organizational structure.
modify", "gaussdb:instance:delete", "vpc:publicIps:list", "vpc:publicIps:update" ], "Effect": "Allow" } ] } Parent Topic: Using IAM
What Should I Do If the Organization and Account Information Is Unavailable to an IAM User? By default, IAM users can view the organization and account information in Enterprise Center.
AAD Permissions and Actions This section describes how to use IAM for fine-grained AAD permissions management. If your Huawei Cloud account does not need individual IAM users, skip this section. By default, new IAM users do not have permissions assigned.
What Do I Do If I Cannot Enable CTS as an IAM User? Issue Description If you fail to enable CTS as an Identity and Access Management (IAM) user, perform the following steps. Procedure Check whether the IAM user has the required permission. If yes, go to 2.
IAM is free of charge. You pay only for the resources in your account. For more information about IAM, see IAM Service Overview. Huawei HiLens Permissions By default, new IAM users do not have any permissions assigned.
How Do I Limit Specific Enterprise Projects to Different IAM Users? Background There are two IAM users, User B and User C, and two enterprise projects, EnterpriseProjectB and EnterpriseProjectC, in your account.
This capability depends on the new IAM, requiring you to adopt the IAM 5.0 permission model. Exercise caution when selecting this capability.
Parent Topic: Using IAM to Grant Access to RDS
Parent topic: Using IAM to Grant Access to RDS
Parent Topic: Using IAM to Grant Access to RDS
After creating a user group on the IAM console, grant the custom policy created in 1 to the user group. Create a user on the IAM console and add the user to the group created in 3.
Parent topic: Calling APIs Through IAM Authentication
On the IAM console, create a user group and attach the VPCEndpoint Administrator policy to the group. Create an IAM user and add it to the created user group. Create an IAM user and add it to the user group created in 1. Log in as the IAM user and verify permissions.
"Action": [ "hss:hosts:switchVersion", "hss:hosts:manualDetect", "hss:manualDetectStatus:get" ] } ] } Parent Topic: Using IAM
"cce:cluster:get", "cce:cluster:list", "cce:node:get", "cce:node:list" ] } ] } Parent Topic: Using IAM
The following is an example deny policy: { "Version": "1.1", "Statement": [{ "Action": ["rds:instance:delete"], "Effect": "Deny" }] } Parent topic: Using IAM to Grant Access to RDS
Why Can't an IAM User Obtain Cluster or Fleet Information After Logging In to UCS? Symptom After an IAM user logs in to the UCS console and goes to the Fleets page, information about the created fleet and registered clusters cannot be obtained.
