Creating a User and Granting Permissions

This section describes how to use IAM for fine-grained permission management on your SWR resources. With IAM, you can:

Create IAM users for employees based on your enterprise's organizational structure. Each IAM user will have their own security credentials for accessing SWR resources.
Grant only the permissions required for users to perform a specific task.
Entrust a cloud account or cloud service to perform efficient O&M on your SWR resources.

If your account does not need individual IAM users, you may skip this section.

This section describes the procedure for granting permissions (see Figure 1).

Learn about the permissions (see Permissions Management) supported by SWR and choose policies or roles according to your requirements.

Figure 1 Process for granting SWR permissions

Create a user group and assign permissions.
Create an IAM user and add the user to a user group.
Log in as the IAM user and verify permissions.
Log in to the management console as the created user. Switch to the authorized region. Perform the following operations. If they can be successfully performed, the permissions are successfully granted.
1. Choose Service List > Software Repository for Container. The SWR console is displayed.
2. In the navigation pane on the left, choose Organization Management, click Create Organization in the upper right corner, and enter an organization name to create an organization.
3. In the navigation pane on the left, choose My Images, click Upload Through SWR in the upper right corner. Select the organization created in the previous step and a local image file. The image is successfully uploaded.