Enterprise Management
Enterprise Management
- What's New
- Function Overview
-
User Guide
-
Enterprise Center
- Overview
- Enabling Enterprise Center
- Accessing the Enterprise Center
- Disabling Enterprise Center
-
Unified Accounting Management
- Enabling Unified Accounting Management
- Organization Management
- Benefits Management
- Restrictions
- Permissions Policies and Supported Actions
- CTS
-
Non-unified Accounting Management (To Be Deprecated)
- Organization Management
-
Accounting Management
-
Allocation and Invoicing
- Allocating Account Balance, Credit Limit, and Cash Coupons
- Withdrawing Account Balance, Credit Limit, and Cash Coupons
- Viewing Financial and Expenditure Information of Member Accounts
- Viewing Order Information of Member Accounts
- Setting a Repayment Priority Account
- Enabling/Disabling Account Transaction Protection
- Viewing Fund Transfer Details
-
Allocation and Invoicing
-
FAQs
-
Common Issues
- What Are the Differences Between IAM Users and Enterprise Member Accounts?
- What Should I Do If the Organization and Account Information Is Unavailable to an IAM User?
- What Requirements Must an Account Meet to Function as a Master Account?
- What Can I Do If the Master Account Cannot Associate with a Member Account Whose Type and Enterprise Name Have Not Been Specified?
- What Can I Do If the Master Account Cannot Associate with an Individual Member Account?
- In What Scenarios Does an Enterprise Master Account Create an Enterprise Member Account? What Is the Real-Name Authentication Information of the Created Member Account?
- How Do I Apply for Enterprise Management Accounts for a Company and Its Subsidiaries and Branches?
- Why Cannot an IAM User of My Enterprise Master Account Cannot View Details About My Member Accounts?
- How Do I Delete an Enterprise Member Account?
- How do I increase the quota of member accounts that I can be associated with?
-
Unified Accounting Management
- What Is Unified Accounting Management? How Can I Enable It?
- What Changes Will Be Caused to an Enterprise Master Account and Its Member Accounts After Unified Accounting Management Is Enabled?
- How Will the Resources Purchased by Enterprise Member Accounts and the Refund for Unsubscription Be Handled After Unified Accounting Management Is Enabled?
- Can a Member Account Use the Credit, Cash Coupons, and Commercial Discounts of the Master Account to Pay For Services?
- How Does a Master Account and Its Member Accounts Check Whether Unified Accounting Management Has Been Enabled?
- How Can I Enable Unified Accounting Management for My Master Account?
- Where Can a Master Account and Its Member Accounts View Accounting Information After Unified Accounting Management Is Enabled?
- Can Internal Customers Enable Unified Accounting Management?
- Which Payment Scenarios of an Enterprise Member Account Are Affected by the Payment Method Set by the Enterprise Master Account for the Enterprise Member Account?
-
Non-unified Accounting Management
- What Requirements Must an Enterprise Master Account Meet to Associate with Another Account?
- What Are the Requirements for Canceling Associations Between an Enterprise Master Account and Its Member Account?
- How Does the Member Account of a Majority-Owned, Joint Stock, or Directly Controlled Subsidiary Apply to Share the Commercial Discounts of the Master Account Used by the Parent Company?
- Why Can't My Member Account Share the Same Commercial Discounts as the Master Account of the Parent Company?
- Can an Enterprise Master Account Allocate Funds to an Enterprise Member Account?
- Why Can't an Enterprise Master Account Allocate Cash Coupons to a Member Account?
- Can an Enterprise Master Account Allocate a Credit Limit to an Enterprise Member Account?
- Who Pays the Fee After an Enterprise Member Account Uses the Allocated Credit?
- Is an Enterprise Master Account Allowed to Request Invoices for a Member Account at the Huawei Cloud International Website?
- Are the Subsidiaries (Member Accounts) of an Enterprise (Master Account) Allowed to Share Its Commercial Discounts and Credits?
- What Information About the Master Account Will Be Inherited by a Newly Created Member Account?
- Credit Repayment Priority
-
Common Issues
-
Project Management
- What Is Enterprise Project Management Service?
- Applicable Scenarios
- Supported Cloud Services
- Notes and Constraints
- Permissions
- Enabling the Enterprise Project Function
- Accessing the Enterprise Project Management Service Page
- Getting Started
- Multi-project Management Cases
- Managing Enterprise Projects
- Managing Resources in an Enterprise Project
- Personnel Management
- Quotas
- Accounting Management
-
FAQs
- What Are the Differences Between IAM and Enterprise Management?
- What Are the Differences Between IAM Projects and Enterprise Projects?
- What Are the Differences Between IAM Users and Enterprise Member Accounts?
- How Can I View All Enterprise Projects?
- How Do I Obtain an Enterprise Project ID?
- How Many Enterprise Projects Can I Create?
- Will Adding or Removing a Resource from an Enterprise Project Change the VPC and Related IPs of the Resource?
- How Do I Limit Specific Enterprise Projects to Different IAM Users?
-
Enterprise Center
- API Reference
- SDK Reference
On this page
Show all
Help Center/
Enterprise Management/
User Guide/
Project Management/
FAQs/
How Do I Limit Specific Enterprise Projects to Different IAM Users?
How Do I Limit Specific Enterprise Projects to Different IAM Users?
Updated on 2025-02-25 GMT+08:00
Background
There are two IAM users, User B and User C, and two enterprise projects, EnterpriseProjectB and EnterpriseProjectC, in your account.
You want to:
- Allow User B to view and manage resources only in EnterpriseProjectB.
- Allow User C to view and manage resources only in EnterpriseProjectC.
Procedure
- Create user groups.
In the IAM console, create UserGroup B and UserGroup C.
For details how to create a user group and assign permissions, see Creating a User Group and Assigning Permissions.Figure 1 Created user groups
- Add users to user groups.
Add User B and User C to UserGroup B and UserGroup C respectively.
For details about how to create a user and add it to the user group, see Creating an IAM User.
Figure 2 Adding a user to a user group
- Assign permissions to user groups.
Assign policies, for example, ELB FullAccess, to groups B and C.
- In the Operation column of the row containing UserGroup B, click Authorize.
- Select the ELB FullAccess policy and click Next.
- Select a scope and click OK.
Select Enterprise projects for Scope, and select EnterpriseProjectB in the displayed enterprise project list.Figure 3 Selecting a scope
- Click Finish.
- Repeat steps 3.a to 3.d to assign the ELB FullAccess policy to UserGroup C.
Verification
Log in to the management console as User B and create a load balancer. If only EnterpriseProjectB can be selected, the permissions have taken effect.
Parent topic: FAQs
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
The system is busy. Please try again later.
