Deze pagina is nog niet beschikbaar in uw eigen taal. We werken er hard aan om meer taalversies toe te voegen. Bedankt voor uw steun.
- Function Overview
- What's New
- Service Overview
- Getting Started
-
User Guide
- Configuration Management
- HTTP Proxy
- Commonly Used Commands
-
Options
- Option Overview
- Printing Help Information
- Printing Debugging Information
- Checking Command
- Specifying Region
- Calling APIs with an Account in Non-configuration Mode
- Calling APIs with AK/SK in Non-configuration Mode
- Calling APIs with a Token in Non-configuration Mode
- Calling APIs Using an Agency in Non-configuration Mode
- Specifying Account ID
- Specifying Profile
- Specifying Authentication Mode
- Specifying Output Format
- Passing API Parameters with JSON File
- Specifying Request Timeouts
- Specifying Retry Count
- Skipping HTTPS Request Certificate Verification
- Specifying a Domain Name
- Obtaining CLI Examples on API Explorer
- Using KooCLI in Non-configuration Mode
- Obtaining Authentication Information
-
FAQs
- Overview
- Authentication
- Profiles
- Metadata Cache
- Logs
- Network Connections
- Cloud Services
- Cloud Service APIs
- Regions
-
Parameters
- What Are KooCLI System Parameters?
- Why Am I Seeing a Message Indicating an Invalid Parameter?
- Why Are Old and New KooCLI System Parameters (Such as region and cli-region) Available? Which Parameters Are Recommended?
- Why Am I Seeing a Message Indicating a Duplicate Parameter?
- How Do I Use cli-jsonInput?
- When Can I Use cli-jsonInput?
- Why Am I Seeing a Message Indicating an Unsupported Parameter Position or Type?
- How Do I Leave a Body Parameter Empty for Cloud Service APIs?
- Interactive Mode and Autocomplete
-
Output Formats
- What Output Formats Are Supported by KooCLI?
- How Do I Define a JMESPath Expression?
- Which KooCLI System Parameters Are Related to Data Output? Which Ones Are Recommended?
- How Do I Use cli-output, cli-query, and cli-output-num?
- How Do I Use cli-output-rows, cli-output-cols, and cli-output-num? What Are the Precautions?
- How Do I Use cli-json-filter? What Are the Precautions?
- Other
- Videos
Show all
Agency Authentication
By creating an agency, you can delegate another account to manage your resources based on assigned permissions. After a trust relationship is established, the delegated party can use the delegating account name (cli-agency-domain-name)/ID (cli-agency-domain-id), agency name (cli-agency-name), and the delegated party's authentication information (token or AK/SK) to get authenticated when calling APIs to manage and use resources of the delegating party.
To use this authentication mode, the delegating party must create an agency for the delegated party. If you are the delegating party, create an agency on the IAM console by referring to Account Delegation. If you are the delegated party, only you and users in the admin group can manage the delegated resources. To assign a common IAM user to manage the resources, authorize the user by referring to Assigning Permissions to an IAM User (by a Delegated Party).
As the delegated party, when calling APIs to manage and use the cloud services and resources of the delegating party, use an AK/SK (access key or temporary security credentials) or a token for authentication.
- AK/SK (delegated party's) authentication
- Access key (permanent AK/SK)
hcloud ECS NovaListServers --cli-region="eu-west-101" --project_id="4ff018c3******************f31948" --cli-agency-domain-id=13534326******************5cf67b --cli-agency-name=****** --cli-access-key=8NVT************KIOV --cli-secret-key=VHMQjoC**************************lsk3cGf
- Temporary security credentials (temporary AK/SK and SecurityToken)
hcloud ECS NovaListServers --cli-region="eu-west-101" --project_id="4ff018c3******************f31948" --cli-agency-domain-id=13534326******************5cf67b --cli-agency-name=****** --cli-access-key=5FSU************607T --cli-secret-key=VoyjgLh**************************qRc8pSq --cli-security-token=******
- Access key (permanent AK/SK)
- Token (cli-x-auth-token) authentication
hcloud ECS NovaListServers --cli-region="eu-west-101" --project_id="4ff018c3******************f31948" --cli-agency-domain-id=13534326******************5cf67b --cli-agency-name=****** --cli-x-auth-token=******
- Account (cli-username, cli-password, and cli-domain) authentication
hcloud ECS NovaListServers --cli-region="eu-west-101" --project_id="4ff018c3******************f31948" --cli-agency-domain-name=q******2 --cli-agency-name=****** --cli-username=s******1 --cli-password=****** --cli-domain=s******1
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
