Creating a User and Granting Permissions
You can use IAM to implement refined permission control for DAS resources. To be specific, you can:
- Create IAM users for employees from different departments of your enterprise in your account. In this way, each IAM user has a unique security credential to use DAS resources.
- Grant only the permissions required for users to perform a specific task.
- Entrust an account or cloud service to perform efficient O&M on your DAS resources.
If your account does not require individual IAM users, skip this chapter.
Figure 1 describes how to grant permissions to a user group.
Prerequisites
Before assigning permissions to user groups, you should learn about DAS system policies and select the policies based on service requirements. For more information about system policies supported by DAS, see Permissions Management.
Process Flow
- Create a user group and assign permissions to it.
Create a user group on the IAM console, and attach the DAS FullAccess policy to the group.
- Create a user and add it to a user group.
Create a user on the IAM console and add the user to the group created in 1.
- Log in and verify permissions.
In the service list, choose Data Admin Service. On the displayed DAS console, click Add Login. If login information can be successfully added, the DAS policy has already taken effect.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
