检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
You can create up to 1000 accounts, including new accounts and the imported IAM account. Importing an IAM Account Imports an IAM account and associates roles with it. Users who use this IAM account have the access and operation permissions on the microservice engine.
For the API for creating an IAM user as an administrator, the following message body is returned. The following describes part of the response body. { "user": { "id": "c131886aec...
To operate a microservice engine on the console, you must have both the IAM and RBAC permissions, and the IAM permission takes precedence over the RBAC permission.
For engines with security authentication enabled, if the login user is the user imported in Importing an IAM Account, go to 6. For other users, go to 5. In the displayed Security Authentication dialog box, enter the account name and password, and click OK.
Adding Image Permissions To allow IAM users of your account to read, write, and manage a specific image, add the required permissions to the IAM users on the details page of this image.
With IAM, you can: Create IAM users for employees based on the organizational structure of your enterprise. Each IAM user has their own security credentials, providing access to ServiceStage resources. Grant only the permissions required for users to perform a specific task.
The same IAM user can join different organizations. Different permissions, namely read, write, and manage, can be assigned to different IAM users in the same account.
The API used to obtain a project ID is GET https://{Endpoint}/v3/projects/, where {Endpoint} indicates the IAM endpoint. You can obtain the IAM endpoint from Regions and Endpoints. For details on API calling authentication, see Authentication.
For details about the relationship between IAM identities and operators and the operator username format, see Relationship Between IAM Identities and Operators.
For security purposes, create Identity and Access Management (IAM) users and grant them permissions for routine management. User A user is created in Identity and Access Management (IAM) to use cloud services.
Different IAM users under the same account can perform operations on the same cluster.
For engines with security authentication enabled, if the login user is the user imported in Importing an IAM Account, go to 6. For other users, go to 5. In the displayed Security Authentication dialog box, enter the account name and password, and click OK.
For engines with security authentication enabled, if the login user is the user imported in Importing an IAM Account, go to 6. For other users, go to 5. In the displayed Security Authentication dialog box, enter the account name and password, and click OK.
{"errorCode":"401002","errorMessage":"Request unauthorized","detail":"Get service token from iam proxy failed,{\"error\":\"get project token from iam failed. error:http post failed, statuscode: 400\"}"} Checking method: Check the project information in the microservice.yaml file.
Different IAM users under the same account can perform operations on the same cluster.
For engines with security authentication enabled, if the login user is the user imported in Importing an IAM Account, go to 6. For other users, go to 5. In the displayed Security Authentication dialog box, enter the account name and password, and click OK.
After CTS is enabled, you can view IAM audit logs. CTS stores operation logs of the last seven days. For details about ServiceStage operations that can be tracked by CTS, see ServiceStage Operations That Can Be Recorded by CTS.
The process of using a microservice engine is as follows: Use IAM to grant access to ServiceStage. Create a microservice engine. Upgrade, back up, restore, authenticate, or delete a microservice engine or change its flavors by referring to Managing Microservice Engines.
For engines with security authentication enabled, if the login user is the user imported in Importing an IAM Account, go to 6. For other users, go to 5. In the displayed Security Authentication dialog box, enter the account name and password, and click OK.
For engines with security authentication enabled, if the login user is the user imported in Importing an IAM Account, go to 6. For other users, go to 5. In the displayed Security Authentication dialog box, enter the account name and password, and click OK.
