检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Creating IAM Users and Granting Them Permissions to Use CSS You can use Identity and Access Management (IAM) for fine-grained permissions control for CSS. With IAM, you can: Create IAM users for employees based on your enterprise's organizational structure.
Replace {user_name} and {password} respectively with the username and password of the IAM server. {project_id}: The project ID.
IAM Users, Project Members, and Repository Members Repository members come from project members of the project to which the repository belongs. Project members mainly come from IAM users of tenants.
Updating the Mapping Between a User (Group) and an IAM Agency Function This API is used to update the mapping between a user or user group and an IAM agency. Constraints None Debugging You can debug this API in API Explorer. Automatic authentication is supported.
X-Auth-Token No String IAM user token, federated user token, or agency token. Specify either X-Auth-Token or Authorization (recommended). You can obtain the token from X-Subject-Token by calling the API for obtaining an IAM user token or agency token.
Querying the Mapping Between a User (Group) and an IAM Agency Function This API is used to obtain details about the mapping between a user or user group and an IAM agency. Constraints None Debugging You can debug this API in API Explorer. Automatic authentication is supported.
Parent topic: IAM User Management
IAM username or email address Alice IAM username or email address entered during the user creation. You can obtain the IAM username and IAM user's initial password from the administrator. IAM user password ******** Password of the IAM user, rather than the account.
Why Can't an IAM User View Media Files Uploaded by the Account on the Console? It is possible is that you use the system policy to isolate media. The IAM user and the account are not in the same group. You are advised to add the IAM user to the group of the account.
APIs using the IAM authentication mode can be authorized only to apps of the IAM type. IAM: APIs using IAM authentication can be authorized to apps of this type. The name of an app of the IAM type is fixed at the a Huawei account.
Configuration Precautions If an IAM user is authorized for an action through both IAM and EPS, the authorization result is subject to IAM configuration. Examples: 1.
ReadOnlyAccess permission (read-only permissions on IAM) to IAM users to obtain the IAM user list.
What Are the Differences Between IAM Users and Enterprise Member Accounts? See What Are the Differences Between IAM Users and Enterprise Member Accounts? Parent topic: Common Issues
An account can allocate funds to IAM users so that IAM users can manage resources independently. Both an account and its IAM user can create IAM users. An account can only manage its own IAM users but cannot manage the IAM users of other accounts.
The IAM permissions of an IAM user are configured by their tenants. If a tenant does not grant the OBS putObjectAcl permission to their IAM users, this issue occurs.
Parent Topic: Using IAM to Grant Access to HSS
When configuring condition keys in IAM, start them with obs:. For details, see Policy Format. Parent Topic: Configuring IAM Permissions
Interconnecting an MRS Cluster with OBS Using an IAM Agency Interconnecting an MRS Cluster with OBS Using an IAM Agency Configuring the Policy for Clearing Recycle Bin Directories of MRS Cluster Components Example for Interconnecting a Cluster Service with OBS Configuring Fine-Grained
Viewing the Notebook Instances of All IAM Users Under One Tenant Account Any IAM user granted with the listAllNotebooks and listUsers permissions can click View all on the notebook page to view the instances of all users in the current IAM project.
Developing API Calling Authentication (IAM) Token Authentication AK/SK Authentication Parent topic: Developer Guide for Service Integration
