检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
IAM authentication Agencies can be created in Identity and Access Management (IAM) to allow edge nodes to access resources such as Application Operations Management (AOM), Data Ingestion Service (DIS), and SoftWare Repository for Container (SWR).
If an IAM user does not have sufficient permissions, an agency cannot be automatically created. To solve this problem, assign permissions defined in the Tenant Administrator policy to the IAM user.
IAM or enterprise projects: A custom policy can be applied to IAM projects or enterprise projects or both. Policies that contain actions supporting both IAM and enterprise projects can be assigned to user groups and take effect in both IAM and Enterprise Management.
After you agree to the entrustment, IEF automatically creates an agency in IAM to delegate other resource operation permissions in your account to Huawei Cloud IEF. For details, see Account Delegation.
After you agree to the entrustment, IEF automatically creates an agency in IAM to delegate other resource operation permissions in your account to Huawei Cloud IEF. For details, see Account Delegation.
The token can be obtained by calling the IAM API used to obtain a user token. The value of X-Subject-Token in the response header is the user token. Response None Error Codes For details, see Error Codes. Parent topic: End Device Template Management
Create a user group on the IAM console, and assign the IEF ReadOnlyAccess policy to the group.
Create a user group on the IAM console, and assign the IEF ReadOnlyAccess policy to the group.
For example, to obtain an IAM token in the CN North-Beijing4 region, obtain the endpoint of IAM (iam.cn-north-4.myhuaweicloud.com) for this region and the resource-path (/v3/auth/tokens) in the URI of the API used to obtain a user token.
For security purposes, create Identity and Access Management (IAM) users and grant them permissions for routine management. User An IAM user is created by an account in IAM to use cloud services. Each IAM user has its own identity credentials (password and access keys).
The token can be obtained by calling the IAM API used to obtain a user token. The value of X-Subject-Token in the response header is the user token. Response None Error Codes For details, see Error Codes. Parent topic: End Device Management
The token can be obtained by calling the IAM API used to obtain a user token. The value of X-Subject-Token in the response header is the user token. Response None Error Codes For details, see Error Codes. Parent topic: Secret Management
The token can be obtained by calling the IAM API used to obtain a user token. The value of X-Subject-Token in the response header is the user token. Response None Error Codes For details, see Error Codes. Parent topic: ConfigMap Management
The token can be obtained by calling the IAM API used to obtain a user token. The value of X-Subject-Token in the response header is the user token. Response None Error Codes For details, see Error Codes. Parent topic: Application Template Management
The token can be obtained by calling the IAM API used to obtain a user token. The value of X-Subject-Token in the response header is the user token. Response None Error Codes For details, see Error Codes. Parent topic: Edge Node Management
Figure 1 Edge hardware Security and Reliability IAM authentication Agencies can be created in Identity and Access Management (IAM) to allow edge nodes to access resources such as Application Operations Management (AOM), Data Ingestion Service (DIS), and SoftWare Repository for Container
name "password": $ADMIN_PASS, //IAM user password.
IAM is a free service. You only pay for the resources in your account. For more information about IAM, see the IAM Service Overview. IEF Permissions New IAM users do not have any permissions assigned by default.
The token can be obtained by calling the IAM API used to obtain a user token. The value of X-Subject-Token in the response header is the user token. Response None Error Codes For details, see Error Codes. Parent topic: Edge Node Management
IAM user An IAM user is created by an account. Each IAM user has their own identity credentials (password and access keys) and uses cloud resources based on assigned permissions. IAM users cannot make payments themselves.
