检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Logging In to Huawei Cloud as an IAM User To log in as an IAM user, you can obtain the IAM user login link from the administrator. Method 1: Logging In by Clicking IAM User on the HUAWEI ID Login Page Click IAM User on the login page.
Listing IAM Users - KeystoneListUsers Function This API is provided for the administrator to list all IAM users. The API can be called using both the global endpoint and region-specific endpoints. For IAM endpoints, see Regions and Endpoints.
The mobile number and email address of the IAM user cannot be the same as those of the account or other IAM users.
Querying the MFA Device Information of an IAM User Function This API can be used by the administrator to query the MFA device information of a specified IAM user or used by an IAM user to query their own MFA device information.
Querying the Login Protection Configuration of an IAM User Function This API can be used by the administrator to query the login protection configuration of a specified IAM user or used by an IAM user to query their own login protection configuration.
IAM User SSO via SAML Overview of IAM User SSO via SAML Creating an IdP Entity Configuring an Enterprise IdP Configuring an External Identity ID Verifying the Login Configuring a Federated Login Entry in the Enterprise IdP Parent topic: Identity Providers
Table 4 user Parameter Type Description name String IAM username. links Object IAM user resource link information. domain_id String ID of the account used to create the IAM user. enabled Boolean Enabling status of the IAM user. true (default value) indicates that the user is enabled
For IAM endpoints, see Regions and Endpoints. Debugging You can debug this API in API Explorer.
Table 3 login_protects Parameter Type Description enabled Boolean Indicates whether login protection has been enabled for an IAM user. The value can be true or false. user_id String IAM user ID. verification_method String Login authentication method of the IAM user.
Listing MFA Device Information of IAM Users Function This API is provided for the administrator to query the MFA device information of IAM users. The API can be called using both the global endpoint and region-specific endpoints. For IAM endpoints, see Regions and Endpoints.
user details user showUser Administrator querying the IAM users in a group user listUsersForGroup Querying the login protection configurations of IAM users user listLoginProtects Querying the login protection configuration of an IAM user user showLoginProtect Listing IAM users users
Parent topic: IAM User Management
Querying the User Groups to Which an IAM User Belongs Function This API can be used by the administrator to query the groups of a specified IAM user or used by an IAM user to query their own groups.
Parent topic: IAM User Management
For IAM endpoints, see Regions and Endpoints. Debugging You can debug this API in API Explorer.
Parent topic: IAM User Management
What Are the Differences Between IAM Projects and Enterprise Projects? IAM Projects IAM projects can group and physically isolate resources. Resources cannot be transferred between IAM projects, but can only be deleted and then created or purchased again.
Parent topic: IAM User Management
In IAM user SSO, the IdP user has a IAM user mapped by external identity ID on the IAM console. 3. Permissions assignment in IAM: In virtual user SSO, the permissions of the IdP user are defined by the identity conversion rule.
For details about how to obtain a user group ID, see Obtaining Account, IAM User, Group, Project, Region, and Agency Information. user_id Yes String IAM user ID.
