检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
IAM: cloud user SAML: SAML-based federation LDAP: ID user LOCAL: local user AGENTTENANT: agency OTHER: others principal_name Yes String Entity name. The value can contain 1 to 49 characters. Only letters, digits, underscores (_), hyphens (-), and periods (.) are allowed.
The options are IAM (cloud user), SAML (SAML-based federation), LDAP (lD user), LOCAL (local user), AGENTTENANT (agency), and OTHER (others). The LakeFormation service is divided into phase 1 and phase 2.
If the permissions granted to an IAM user contain both "Allow" and "Deny", the "Deny" permissions take precedence over the "Allow" permissions.
For an IAM user to use GaussDB(DWS) to call APIs on the LakeFormation management plane, the user must have LakeFormation permissions (at least lakeformation:instance:access and lakeformation:instance:describe).
The options are IAM (cloud user), SAML (SAML-based federation), LDAP (lD user), LOCAL (local user), AGENTTENANT (agency), and OTHER (others). The LakeFormation service is divided into phase 1 and phase 2.
Authorization entities include IAM users, user groups, and LakeFormation roles. You can grant permissions to metadata objects such as catalogs, databases, tables, columns, functions, and OBS paths.
Check configuration items. 500 00011128 Failed to create or update the IAM permission. Contact O&M personnel for assistance. 500 00011129 Failed to create or update the IAM agency.
IAM: cloud user SAML: SAML-based federation LDAP: ID user LOCAL: local user AGENTTENANT: agency OTHER: others principal_name Yes String Entity name. The value can contain 1 to 49 characters. Only letters, digits, underscores (_), hyphens (-), and periods (.) are allowed.
IAM: cloud user SAML: SAML-based federation. LDAP: ID user LOCAL: local user AGENTTENANT: agency OTHER: others parameters Map<String,String> Parameter. external_role_id String User role ID, which is specified during creation and cannot be changed.
You have prepared an IAM user who has the permission to create LakeFormation instances. For details, see Creating an IAM User and Granting LakeFormation Permissions. Step 1: Create a LakeFormation Instance Log in to the management console as the user prepared in Preparations.
Table 3 Request body parameters Parameter Mandatory Type Description user_names No Array of strings IAM users. groups No Array of strings User group. roles No Array of strings Role.
IAM: cloud user SAML: SAML-based federation. LDAP: ID user LOCAL: local user AGENTTENANT: agency OTHER: others parameters Map<String,String> Parameter. external_role_id String User role ID, which is specified during creation and cannot be changed.
IAM: cloud user SAML: SAML-based federation LDAP: ID user LOCAL: local user AGENTTENANT: agency OTHER: others principal_name Yes String Entity name. The value can contain 1 to 49 characters. Only letters, digits, underscores (_), hyphens (-), and periods (.) are allowed.
Currently, enterprise project authentication only supports IAM 3.0 policies.
IAM: cloud user SAML: SAML-based federation. LDAP: ID user LOCAL: local user AGENTTENANT: agency OTHER: others parameters Map<String,String> Parameter. external_role_id String User role ID, which is specified during creation and cannot be changed.
You can select a user group, role, IAM user, or agency as the authorization entity. To avoid authorization failure, ensure that the selected entity's name does not contain hyphens (-). If you want to grant the write permission as well, select Write Permission.
IAM: cloud user SAML: SAML-based federation. LDAP: ID user LOCAL: local user AGENTTENANT: agency OTHER: others parameters Map<String,String> Parameter. external_role_id String User role ID, which is specified during creation and cannot be changed.
The options are IAM (cloud user), SAML (SAML-based federation), LDAP (permission policy), LOCAL (local user), AGENT (agency), AGENTTENANT (agency), and OTHER (others). principal_name String Entity name. resource ResourceInfo object Resource information. resource_name String Require
The options are USER (user), GROUP (group), and ROLE (role). owner_auth_source_type No String Owner source: IAM (cloud user), SAML (federated user), LDAP (LDAP user), LOCAL (local user), AGENTTENANT (agent), and OTHER (other).
