检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Create an IdP of the IAM user SSO type. For details, see Creating an IdP Entity on Huawei Cloud. The IdP name must be unique. You are advised to use the domain name. For details about IAM user SSO, see Application Scenarios of Virtual User SSO and IAM User SSO.
Create an IdP of the IAM user SSO type. For details, see Creating an IdP Entity on Huawei Cloud. The IdP name must be unique. You are advised to use the domain name. For details about IAM user SSO, see Application Scenarios of Virtual User SSO and IAM User SSO.
Accessing OneAccess as an Authorized IAM User Authorized IAM users can access the OneAccess administrator portal through Huawei Cloud. Log in to Huawei Cloud as an IAM user. For details, see Logging In as an IAM User.
For details about the mapping fields, see 2. local indicates the local IAM information, user indicates the IAM user, name indicates the displayed IAM username, and {0} indicates the first field in remote. group indicates the IAM user group, indicating that all users are mapped to
For details about the mapping fields, see 2. local indicates the local IAM information, user indicates the IAM user, name indicates the displayed IAM username, and {0} indicates the first field in remote. group indicates the IAM user group, indicating that all users are mapped to
The email address field of an IAM user is mandatory. Users authorized in OneAccess must have this field. Logging In as a User Users with Huawei Cloud access permissions can easily access CodeArts with a single click after logging in to the OneAccess user portal.
User SSO) Logging In to Multiple Huawei Cloud Accounts via OneAccess Without Password (SAML - IAM User SSO) Logging In to Huawei Cloud via OneAccess Without Password (OIDC) Parent topic: Application Integration
If you do not have the permission to access the OneAccess instance, you need to access the OneAccess administrator portal as an IAM user. For details, see Granting IAM Users the Permission to Access OneAccess Instance.
Table 5 Other best practices Practice Description Authorizing IAM Users to Access a OneAccess Instance Administrator Portal You can use your account to create IAM users and assign permissions for specific resources.
If you do not have permission to access the OneAccess instance, you need to access the OneAccess administrator portal as an IAM user and request access permission for the instance. For details, see Creating an Authorization.
System administrator System administrators are created by enterprise administrators in Identity and Access Management (IAM). They can access the organizations, users, and applications menus in the administrator portal but cannot create administrators.
System Administrator System administrators are created by Huawei Cloud master accounts in Identity and Access Management (IAM). They can access the organizations, users, and applications menus in the administrator portal but cannot create administrators.
If your account does not require individual IAM users for permissions management, skip this section. IAM is a free service of Huawei Cloud. You only pay for the resources in your account. For more information about IAM, see What Is IAM?
To grant the IAM user all permissions for OneAccess, select the OneAccess FullAccess policy. Removing an IAM User To revoke an IAM user's permission to access an instance, perform the following operations: Log in to the Huawei Cloud console.
