检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
With IAM, you can use your Huawei Cloud account to create IAM users, and assign permissions to the users to control their access to specific resources.
service, the temporary IAM access key in a cluster expires.
Constraints An IAM user can pass the authentication and access DataArts Studio through an API or SDK only if Programmatic access is selected for Access Type during the creation of the IAM user.
Making an API Request This section describes the structure of a REST API request, and calls the IAM API for obtaining a user token as an example. The obtained token can then be used to authenticate the calling of other APIs.
For example, the endpoint of IAM in the AP-Singapore region is iam.ap-southeast-3.myhwcloud.com. resource-path: access path of an API for performing a specified operation. Obtain the value from the URI of an API.
Making an API Request This section describes the structure of a REST API request, and calls the IAM API for obtaining a user token as an example. The obtained token can then be used to authenticate the calling of other APIs.
For example, to obtain an IAM token in the AP-Singapore region, obtain the Endpoint of IAM (iam.ap-southeast-3.myhuaweicloud.com) for this region and the resource-path (/v3/auth/tokens) in the URI of the API used to obtain a user token.
Making an API Request This section describes the structure of a REST API request, and calls the IAM API for obtaining a user token as an example. The obtained token can then be used to authenticate the calling of other APIs.
For IAM endpoints, see Regions and Endpoints. Debugging You can debug this API in API Explorer.
Modifying User Group Permissions You can view or modify user group permissions on the Permissions page of the IAM console. Modifying the permissions of a user group affects the permissions of all users in the user group.
For example, to list instances in IAM Identity Center, obtain the endpoint of IAM Identity Center (identitycenter.myhuaweicloud.com) and find resource-path (/v1/instances) in the URI of the API for Listing Instances.
You can also use bucket policies to grant IAM users the permissions to access buckets.
Before applying for an OBT, an IAM user needs to contact the IAM administrator to grant the BSS Administrator permissions for a regional project in the IAM. Log in to Huawei Cloud. Click Console in the upper right corner of the displayed page.
For example, to obtain an IAM token in the CN-Hong Kong region, obtain the endpoint of IAM (iam.ap-southeast-1.myhuaweicloud.com) for this region and the resource-path (/v3/auth/tokens) in the URI of the API used to obtain a user token.
For example, to obtain an IAM token in the CN North-Beijing1 region, obtain the endpoint of IAM (iam.cn-north-1.myhuaweicloud.com) for this region and the resource-path (/v3/auth/tokens) in the URI of the API used to obtain a user token through password authentication.
IAM provides identity authentication, permissions management, and access control, helping you secure access to your resources. With IAM, you can use your account to create IAM users, and assign permissions to the users to control their access to specific resources.
IAM authentication Agencies can be created in Identity and Access Management (IAM) to allow edge nodes to access resources such as Application Operations Management (AOM), Data Ingestion Service (DIS), and SoftWare Repository for Container (SWR).
Maximum length: 2048 Table 3 Parameters in the request body Parameter Mandatory Type Description group_id Yes String Globally unique ID of an IAM Identity Center group in the identity source Minimum length: 1 Maximum length: 47 member_id Yes Object Group member ID Table 4 member_id
Maximum length: 2048 Table 3 Parameters in the request body Parameter Mandatory Type Description group_id Yes String Globally unique ID of an IAM Identity Center group in the identity source Minimum length: 1 Maximum length: 47 member_id Yes Object Group member ID Table 4 member_id
For example, the endpoint of IAM in the CN-Hong Kong region is iam.ap-southeast-1.myhuaweicloud.com. resource-path Access path of an API for performing a specified operation. Obtain the value from the URI of an API.
