检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Listing Users Function This API is used to list the IAM Identity Center users in the specified identity source.
Querying the SP Configuration Function This API is used to query the SCIM configuration in IAM Identity Center.
Updating a User Function This API is used to update the attributes of an IAM Identity Center user based on the user ID.
Deleting a Group Function This API is used to delete an IAM Identity Center group based on the group ID.
Querying Group Details Function This API is used to query details about an IAM Identity Center group based on the group ID.
Creating a User Function This API is used to synchronize a user to IAM Identity Center using the System for Cross-domain Identity Management (SCIM) protocol.
Deleting a User Function This API is used to delete an IAM Identity Center user based on the user ID.
Querying User Details Function This API is used to query details about an IAM Identity Center user based on the user ID.
Creating a Group Function This API is used to synchronize a group to IAM Identity Center using the SCIM protocol.
IAM Identity Center automatically synchronizes the account permission information to IAM without the complexity of managing individual accounts.
Changing the Identity Source Enabling and configuring ABAC in IAM Identity Center IAM Identity Center as identity source: Enable ABAC on the IAM Identity Center console and add user attributes for configuring ABAC.
IAM Identity Center supports identity federation with Security Assertion Markup Language (SAML). IAM Identity Center adds SAML IdP capabilities to either your IAM Identity Center identity store or external identity provider (IdP) applications.
OBT What Is IAM Identity Center?
Permissions Management Creating a User and Granting IAM Identity Center Permissions Creating IAM Custom Policies for IAM Identity Center
You can set the duration as follows: If you use an external identity provider (IdP) as the identity source of IAM Identity Center, the duration of the user portal session is the shorter one that you set in the IdP or IAM Identity Center.
For security purposes, create Identity and Access Management (IAM) users and grant them permissions for routine management. User An IAM user is created by an account in IAM to use cloud services. Each IAM user has its own identity credentials (password and access keys).
The principal can be either a user or a group in IAM Identity Center.
Type Description role_id String Unique ID of the IAM system-defined policy Minimum length: 20 Maximum length: 2048 role_name String Name of the IAM system-defined policy Minimum length: 1 Maximum length: 100 Table 6 page_info Parameter Type Description next_marker String If present
Procedure You can add, edit, or delete tags of a permission set on the IAM Identity Center console. Log in to the Huawei Cloud console. Click in the upper left corner of the page and choose Management & Governance > IAM Identity Center.
Maximum length: 2048 Table 3 Parameters in the request body Parameter Mandatory Type Description managed_role_id Yes String Unique ID of the IAM system-defined policy managed_role_name No String Name of the IAM system-defined policy Minimum length: 1 Maximum length: 128 Response Parameters
