Updated on 2024-04-08 GMT+08:00

Creating a Security Administrator

For security purposes, create a security administrator and manage users in your account as the security administrator.

Only Cloud Alliance users with the administrator rights can create and manage users in IAM. Other users must use Cloud Customer Space to create users. On the Rights page, click Add user. For details, see Adding a user. More help about the Cloud Customer Space can be found on Flexible Engine assistance.

Procedure

  1. Choose Management & Deployment > Identity and Access Management.
  2. In the navigation pane, choose Users.
  3. On the Users page, click Create User.
  4. On the Create User page, enter a username.
  5. Select API password for Credential Type.

    • You can use the API password to log in to the management console and to access resources with development tools (such as APIs, CLI, and SDKs) that support password authentication. The security administrator will manage users, so you are advised to select for Credential Type.
    • You can also access resources using access keys together with development tools (including APIs, CLI, and SDKs) that support key authentication.

  6. In the User Groups area, select admin from the drop-down list.
  7. Click Next.
  8. Then specify API Password Type as Set now.

    If you create the security administrator for yourself, select Set now for API Password Type. If you create the security administrator for another user, select Set by user for API Password Type so that the user can set their own password.

  9. Select API Password Reset to require the security administrator to change the password at first login. This option is enabled by default. Keep it enabled for security purposes.
  10. Enter the email address, mobile number, and API password, and enter the password again.

    • The email address and mobile number will be used as credentials of the security administrator.
    • The password must meet the following requirements:
      • Must contain 6 to 32 characters.
      • Complies with the password policy.
      • Must contain at least two types of the following: uppercase letters, lowercase letters, digits, and special characters (~`!?,.:;-_'"(){}[]/<>@#$%^&*+|\= and spaces).
      • Cannot be the username or the username spelled backwards. For example, if the username is A12345, the password cannot be A12345, a12345, 54321A, or 54321a.

  11. Click OK.