检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Obtaining Information About Account, IAM User, Group, Project, Region, and Agency Obtaining Account, IAM User, and Project Information Using the console On the Huawei Cloud homepage, click Console in the upper right corner.
Creating a User and Granting RAM Permissions You can use Identity and Access Management (IAM) to implement fine-grained permissions control for your RAM resources. With IAM, you can: Create IAM users for personnel based on your enterprise's organizational structure.
Policies that contain actions for both IAM and enterprise projects can be used and applied for both IAM and Enterprise Management. Policies that contain actions only for IAM projects can be used and applied to IAM only.
If your account does not need individual IAM users for permissions management, you can skip this section. IAM is a free service. You pay only for the resources in your account. For more information about IAM, see IAM Service Overview.
Creating Custom Policies You can use IAM to create custom policies to supplement system-defined RAM policies. For the actions supported by custom policies, see Permissions and Supported Actions.. To create a custom policy, choose either visual editor or JSON.
For security purposes, create Identity and Access Management (IAM) users and grant them permissions for routine management. User An IAM user is created by an account in IAM to use cloud services. Each IAM user has its own identity credentials (password and access keys).
Appendixes Status Codes Error Codes Obtaining Information About Account, IAM User, Group, Project, Region, and Agency
Actions Table 1 RAM actions Permission API Action IAM Project Enterprise Project Listing RAM managed permissions GET /v1/permissions ram:permissions:list × × Getting the details about RAM managed permissions GET /v1/permissions/{permission_id} ram:permissions:get × × Getting all versions
Check whether the RAM permission has been granted to the IAM user. 400 RAM.1009 The resource type %s has no permission. No permissions for the shared resource. Grant the permissions to access the shared resource. 400 RAM.1010 The domain id %s does not own the resource urn %s.
