检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Listing Account Assignment Deletion Statuses Function This API is used to list the account assignment deletion statuses of a specified IAM Identity Center instance.
Listing Account Assignment Creation Statuses Function This API is used to list the account assignment creation statuses of a specified IAM Identity Center instance.
Minimum length: 12 Maximum length: 12 user_id Yes String Globally unique ID of an IAM Identity Center user in the identity source.
Querying the Region Where a Service Instance Is Enabled Function This API is used to query the region where an IAM Identity Center instance is enabled. It can be called only from the organization's management account or from a delegated administrator account of a cloud service.
URI POST /v1/instances/{instance_id}/permission-sets Table 1 Path parameters Parameter Mandatory Type Description instance_id Yes String Globally unique ID of an IAM Identity Center instance.
Array length: 0-10 group_id String Globally unique ID of an IAM Identity Center group in the identity source. Minimum length: 1 Maximum length: 47 identity_store_id String Globally unique ID of an identity source.
Click in the upper left corner of the page and choose Management & Governance > IAM Identity Center. In the navigation pane, choose Groups. In the group list, select multiple groups and click Delete above the list.
Registering a Client Function This API is used to register a client in IAM Identity Center, which allows the client to initiate device authorization. The output should be persistent for reuse by authentication requests.
Deleting a User Function This API is used to delete an IAM Identity Center user based on the user ID. It can be called only from the organization's management account or from a delegated administrator account of a cloud service.
The principal can be either a user or a group in IAM Identity Center. It can be called only from the organization's management account or from a delegated administrator account of a cloud service.
Minimum length: 12 Maximum length: 12 group_id Yes String Globally unique ID of an IAM Identity Center group in the identity source.
Creating a User Function This API is used to create an IAM Identity Center user in the specified identity source. It can be called only from the organization's management account or from a delegated administrator account of a cloud service.
Querying Details about the Account Assignment Deletion Status Function This API is used to query details about the account assignment deletion status of a specified IAM Identity Center instance based on the request ID.
Querying Details about the Account Assignment Creation Status Function This API is used to query details about the account assignment creation status of a specified IAM Identity Center instance based on the request ID.
If you are using IAM Identity Center as the identity source, you can configure MFA in IAM Identity Center as follows. Procedure Log in to the Huawei Cloud management console. Click in the upper left corner of the page and choose Management & Governance > IAM Identity Center.
Listing Users Function This API is used to list the IAM Identity Center users in the specified identity source. It can be called only from the organization's management account or from a delegated administrator account of a cloud service.
The differences between performing ABAC on IAM Identity Center and on external identity providers are as follows: IAM Identity Center: You need to add the attributes for performing ABAC on the Access Control Attributes tab of IAM Identity Center.
Functions Centralized Identity Management IAM Identity Center allows you to create and manage users and groups as identities. With login credentials, your users can then manage their own access to multiple Huawei Cloud accounts from a single user portal.
A quota is a limit on the quantity or capacity of a certain type of service resources available to you, for example, the maximum number of IAM Identity Center users or groups that you can create.
For security purposes, create Identity and Access Management (IAM) users and grant them permissions for routine management. User An IAM user is created by an account in IAM to use cloud services. Each IAM user has its own identity credentials (password and access keys).
