检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Why Can't an IAM User See a New DCS Redis Instance? Symptom An IAM user cannot see a newly created DCS Redis instance. Possible Cause The IAM user does not have permissions for the enterprise project to which the new instance belongs. Solution Log in to the DCS console.
Create a user group on the IAM console, and assign the DCS ReadOnlyAccess policy to the group. Create an IAM user. Create a user on the IAM console and add the user to the group created in 1. Log in and verify permissions.
Replace the italic fields in bold with the actual values. accountid: account ID of the IAM user username: IAM username to be created email: email address of the IAM user **********: password of the IAM user POST https://iam.ap-southeast-1.myhuaweicloud.com/v3.0/OS-USER/users Content-Type
IAM can be used free of charge. You pay only for the resources in your account. For more information about IAM, see the IAM Service Overview. DCS Permissions By default, new IAM users do not have permissions assigned.
IAM projects and enterprise projects: type of projects for which an action will take effect. Policies that contain actions supporting both IAM and enterprise projects can be assigned to user groups and take effect in both IAM and Enterprise Management.
IAM IAM provides identity authentication, permissions management, and access control. With IAM, you can control access to DCS. Cloud Eye Cloud Eye is a secure, scalable, and integrated monitoring service.
For the API for creating an IAM user as an administrator, the message header shown in Figure 1 is returned.
IAM provides identity authentication, permissions management, and access control, helping you secure access to your Huawei Cloud resources. For details, see Permissions Management. Parent topic: Security
To ensure security, create Identity and Access Management (IAM) users and grant them permissions for routine management. IAM user An IAM user is created using an account to use cloud services. Each IAM user has its own identity credentials (password and access keys).
To better isolate and manage permissions, you are advised to configure an independent IAM administrator and grant them the permission to manage IAM policies. The IAM administrator can create different user groups based on your service requirements.
Why Can't an IAM User See a New DCS Redis Instance?
The API used to obtain a project ID is GET https://{Endpoint}/v3/projects/, where {Endpoint} indicates the IAM endpoint. You can obtain the IAM endpoint from Regions and Endpoints. For details on API calling authentication, see Authentication.
The IAM user does not have the permissions required to create an instance. Analysis: The group to which the user belongs must be granted the DCS FullAccess policy or DCS Administrator role or other policies containing the permissions required for creating DCS instances.
An administrator can configure critical operation protection, and IAM users can only view the configurations. If an IAM user needs to modify the configurations, the user can request the administrator to perform the modification or grant the required permissions.
Contact technical support. 500 DCS.5039 Obtain IAM service failed. Obtain IAM service failed. Contact technical support. 500 DCS.5040 Call IAM API for querying agency failed. Call IAM API for querying agency failed.
Security and reliability Instance data storage and access are securely protected through HUAWEI CLOUD security management services, including Identity and Access Management (IAM), Virtual Private Cloud (VPC), Cloud Eye, and Cloud Trace Service (CTS).
