检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Adding Users to or Removing Users from a Group After an IAM Identity Center user is added to or removed from a specific IAM Identity Center group, the user gains or loses the permissions of that group. This way, you can change the user's permissions quickly.
Managing Certificates IAM Identity Center uses certificates to set up a SAML trust relationship between IAM Identity Center and your external identity provider.
Okta IAM Identity Center supports automatic provisioning (synchronization) of user and group information from Okta into IAM Identity Center using the SCIM v2.0 protocol.
Must I Use an IAM User (Sub Account) to Configure Transfer on CTS and Perform Operations on an OBS Bucket? No. You only need to ensure that you have the permissions to perform operations on OBS buckets. Parent topic: FAQs
Listing Instances Function This API is used to query the instance list of IAM Identity Center.
Updating Access Control Attributes for a Specified Instance Function This API is used to update IAM Identity Center identity source attributes that can be used with the IAM Identity Center instance for ABAC.
How Do I Create a Secondary Huawei Cloud Account (IAM Account)? How Do I Log In to It and What Permissions Does It Have? See Getting Started with IAM. Parent topic: Account
Must I Use an IAM User (Sub Account) to Configure Transfer on CTS and Perform Operations on an OBS Bucket? No. You only need to ensure that you have the permissions to perform operations on OBS buckets. Parent topic: FAQs
Parent topic: Interconnecting an MRS Cluster with OBS Using an IAM Agency
Parent topic: IAM Permissions Management
Selecting an MFA Type You can select a device type for MFA authentication when IAM Identity Center users are prompted for MFA. Procedure Log in to the Huawei Cloud console. Click in the upper left corner of the page and choose Management & Governance > IAM Identity Center.
Parent topic: IAM Permissions Management
For example, if you enter the IAM console URL, users will access the IAM console after login. Description Description of a permission set.
Parent topic: Interconnecting an MRS Cluster with OBS Using an IAM Agency
Constraints For details about the quota limits of IAM Identity Center, see Notes and Constraints. For more constraints, see API description. Parent topic: Before You Start
Parent topic: IAM Permissions Management
IAM is a free service. You only pay for the resources in your account. For more information about IAM, see IAM Service Overview. IAM Identity Center Permissions New IAM users do not have any permissions assigned by default.
Table 1 IAM Identity Center operations that can be recorded by CTS Operation Resource Type Event Name Enabling IAM Identity Center Instance StartIdentityCenter Disabling IAM Identity Center Instance DeleteIdentityCenter Registering a region Instance RegisterRegion Updating single
Click in the upper left corner of the page and choose Management & Governance > IAM Identity Center. In the navigation pane, choose Groups. In the group list, select multiple groups and click Delete above the list.
Registering a Client Function This API is used to register a client in IAM Identity Center, which allows the client to initiate device authorization. The output should be persistent for reuse by authentication requests.
