检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
If you log in to Huawei Cloud as an IAM user, first contact your CTS administrator (account owner or a user in the admin user group) to obtain the CTS FullAccess permissions. For details, see Assigning Permissions to an IAM User.
For services that do not differentiate regions, such as IAM, enable CTS and create a tracker named system in the central region CN-Hong Kong so that traces can be reported in other regions.
For details about the relationship between IAM identities and operators and the operator username format, see Relationship Between IAM Identities and Operators.
If you log in to Huawei Cloud as an IAM user, first contact your CTS administrator (account owner or a user in the admin user group) to obtain the CTS FullAccess permissions. For details, see Assigning Permissions to an IAM User.
What If I Cannot Enable CTS as an IAM User? Does the cts_admin_trust Agency Include OBS Authorization? Does CTS Support Integrity Verification of Trace Files? Can I Disable CTS? How Will CTS Be Affected If My Account Balance Is Insufficient?
Using CTS to Monitor the Operation of Creating an IAM User This section describes how to use operation audit and key event notifications of CTS to monitor the operation of creating an Identity and Access Management (IAM) user and send an alarm by email.
How Do I Find Out the Login IP Address of an IAM User? Does CTS Record ECS Creation Failures? How Do I Find Out Who Created a Specific ECS? Why Is an Operation Recorded Twice in the Trace List? Why Are There Some Null Fields on the View Trace Page?
If you log in to Huawei Cloud as an IAM user, first contact your CTS administrator (account owner or a user in the admin user group) to obtain the CTS FullAccess permissions. For details, see Assigning Permissions to an IAM User.
However, users with the enterprise project management function enabled must also be granted certain IAM permissions to use this capability. For global services, you must configure trackers and key event notifications on the CTS console in the central region (CN-Hong Kong).
For an IAM user, the format is iam::<account-id>:user:<user-name>. For an IAM assumed-agency session identity, the format is sts::sts::<account-id>:assumed-agency:<agency-name>/<agency-session-name>.
For security purposes, create Identity and Access Management (IAM) users and grant them permissions for routine management. User An IAM user is created using an account to use cloud services. Each IAM user has their own identity credentials (password and access keys).
If you log in to the console as an Identity and Access Management (IAM) user, first contact your CTS administrator (account owner or a user in the admin user group) to obtain the CTS FullAccess permissions. For details, see Assigning Permissions to an IAM User.
If you log in to Huawei Cloud as an IAM user, first contact your CTS administrator (account owner or a user in the admin user group) to obtain the CTS FullAccess permissions. For details, see Assigning Permissions to an IAM User.
However, users with enterprise project management function enabled must also be granted certain IAM permissions to use this capability. Helpful Links What Is Organizations?
Status Code Error Code Error Message Description Solution 400 CTS.0001 The IAM or OBS service is abnormal. The IAM or OBS service is abnormal. Contact technical support. 400 CTS.0003 The message body is empty or invalid. The message body is empty or invalid.
Table 8 NotificationUsers Parameter Type Description user_group String IAM user group. user_list Array of strings IAM user. Table 9 Filter Parameter Type Description condition String Relationship between conditions.
If you log in to the console as an IAM user, first contact your CTS administrator (account owner or a user in the admin user group) to obtain the CTS FullAccess permissions. For details, see Assigning Permissions to an IAM User. Configure CTS log ingestion on the LTS console.
) IAM operations that can be recorded by CTS Tag Management Service (TMS) TMS operations that can be recorded by CTS Resource Access Manager (RAM) RMS operations that can be recorded by CTS Log Tank Service (LTS) LTS operations that can be recorded by CTS Config Config operations
The login modes include logging in as a common user, logging in as a federated tenant, switching as an agency, and logging in as an IAM Identity Center user.
If you log in to the console as an Identity and Access Management (IAM) user, first contact your CTS administrator (account owner or a user in the admin user group) to obtain the CTS FullAccess permissions. For details, see Assigning Permissions to an IAM User.
