检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Using IAM to Grant Access to FlexusX FlexusX allows you to use IAM to implement fine-grained permissions control on your FlexusX resources. With IAM, you can: Create IAM users or user groups for personnel based on your enterprise's organizational structure.
Wait for the notification regarding the creation of an IAM user on the email terminal. You have received the email alarm about creating an IAM user. CTS can monitor the operation of creating an IAM user. FAQ Links What Should I Do If I Cannot Enable CTS as an IAM User?
Parent topic: IAM User Management
Granting IAM User Groups Basic Permissions on All OBS Resources Scenario This topic describes how to use OBS system roles and policies preset in IAM to grant basic operation permissions for all OBS resources to multiple IAM users or user groups.
Rotating IAM Secrets Using FunctionGraph Scenario This section describes how to rotate IAM secrets through KMS using a FunctionGraph template. Constraints Only IAM member accounts can be rotated. IAM master accounts cannot be rotated.
of an IAM user.
Using IAM to Grant Access to RDS Using IAM Roles or Policies to Grant Access to RDS Using IAM Identity Policies to Grant Access to RDS
General Procedure You can perform security audit on the permissions of IAM users, including identity policies attached to IAM users and IAM user groups.
Querying the Login Information of an IAM User Function This API is used to query the login information of a specified IAM user.
Modifying the Login Information of an IAM User Function This API is used to modify the login information of a specified IAM user.
String New password of an IAM user. old_password Yes String Old password of an IAM user.
Creating the Login Information of an IAM User Function This API is used to create the login information of a specified IAM user.
Attaching an Identity Policy to an IAM User Function This API is used to attach a specified identity policy to a specified IAM user.
Deleting the Login Information of an IAM User Function This API is used to delete the login information of a specified IAM user.
Using IAM to Grant AAD Permissions Creating a User and Granting the AAD Access Permission Creating an AAD Custom Policy AAD Permissions and Actions Permission Dependency of the AAD Console Parent Topic: Advanced Anti-DDoS User Guide
Does CBH Support IAM Fine-Grained Management? Yes. Identity and Access Management (IAM) is a basic service for permission management. By default, new IAM users do not have any permissions. You need to grant different permissions to IAM users based on their duties.
How Do I Grant Permissions to an IAM User? If you want to authorize an IAM user to operate the SecMaster service, you need to use the primary account to grant permissions to the user. Granting Permissions to an IAM User Log in to the SecMaster console as an administrator.
Which Permissions Are Required for an IAM User to Use FunctionGraph?
Removing an IAM User from a Group Function This API is used to remove an IAM user from a group. Authorization Information Each account has all the permissions required to call all APIs, but IAM users must be assigned the following required identity policy-based permissions.
Table 1 IAM Identity Center operations that can be recorded by CTS Operation Resource Type Event Name Enabling IAM Identity Center Instance StartIdentityCenter Disabling IAM Identity Center Instance DeleteIdentityCenter Registering a region Instance RegisterRegion Updating single
