检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Using IAM to Grant AAD Permissions Creating a User and Granting the AAD Access Permission Creating an AAD Custom Policy AAD Permissions and Actions Permission Dependency of the AAD Console Parent Topic: Advanced Anti-DDoS User Guide
Using IAM to Grant Anti-DDoS Permissions Creating a User Group and Assigning the Anti-DDoS Access Permission Anti-DDoS Custom Policies Anti-DDoS Permissions and Actions Permission Dependency of the Anti-DDoS Console Parent Topic: CNAD Basic (Anti-DDoS) User Guide
Using IAM to Grant CNAD Permissions Creating a User and Granting the CNAD Access Permission CNAD Pro Custom Policies CNAD Pro Permissions and Actions Permission Dependency of the CNAD Console Parent Topic: CNAD Advanced (CNAD) Operation Guide
Parent Topic: Using IAM to Grant CNAD Permissions
AAD Permissions and Actions This section describes how to use IAM for fine-grained AAD permissions management. If your Huawei Cloud account does not need individual IAM users, skip this section. By default, new IAM users do not have permissions assigned.
Parent Topic: Using IAM to Grant AAD Permissions
Parent Topic: Using IAM to Grant Anti-DDoS Permissions
CNAD Pro Permissions and Actions This section describes how to use IAM for fine-grained CNAD permissions management. If your Huawei Cloud account does not need individual IAM users, skip this section. By default, new IAM users do not have any permissions.
Parent Topic: Using IAM to Grant CNAD Permissions
Parent Topic: Using IAM to Grant AAD Permissions
Parent Topic: Using IAM to Grant Anti-DDoS Permissions
With IAM, you can use your Huawei Cloud account to create IAM users for your employees, and assign permissions to the users to control their access to specific resource types.
Statement": [ { "Effect": "Deny", "Action": [ "cnad:blackWhiteIpList:delete" ] }, ] } Parent Topic: Using IAM
Statement": [ { "Effect": "Deny", "Action": [ "aad:whiteBlackIpRule:delete" ] }, ] } Parent Topic: Using IAM
Statement": [ { "Effect": "Allow", "Action": [ "anti-ddos:defaultDefensePolicy:get" ] } ] } Parent Topic: Using IAM
For example, to obtain an IAM token in the CN-Hong Kong region, obtain the endpoint of IAM (iam.ap-southeast-1.myhuaweicloud.com)) for this region and the resource-path (/v3/auth/tokens) in the URI of the API used to obtain a user token.
If your account does not need individual IAM users, then you may skip over this section. By default, new IAM users do not have any permissions. You need to add a user to one or more groups, and attach permissions policies or roles to these groups.
With IAM, you can use your Huawei Cloud account to create IAM users for your employees, and assign permissions to the users to control their access to specific resource types.
With IAM, you can use your Huawei Cloud account to create IAM users for your employees, and assign permissions to the users to control their access to specific resource types.
Access Control Anti-DDoS uses IAM to control access, assigning system roles and implementing fine-grained permission management. For details about permission management, see: Permission Management for Anti-DDoS Parent topic: Security
