Help Center> Identity and Access Management> API Reference> API> Security Settings> Querying the Login Protection Configuration of an IAM User

Updated on 2023-07-05 GMT+08:00

View PDF

Querying the Login Protection Configuration of an IAM User

Function

This API can be used by the administrator to query the login protection configuration of a specified IAM user or used by an IAM user to query their own login protection configuration.

The API can be called using both the global endpoint and region-specific endpoints. For IAM endpoints, see Regions and Endpoints.

URI

GET /v3.0/OS-USER/users/{user_id}/login-protect

**Table 1** URI parameters
Parameter	Mandatory	Type	Description
user_id	Yes	String	IAM user ID. For details about how to obtain a user ID, see Obtaining Account, IAM User, Group, Project, Region, and Agency Information.

Request Parameters

**Table 2** Parameters in the request header
Parameter	Mandatory	Type	Description
X-Auth-Token	Yes	String	If the administrator is requesting to query the login protection configuration of a specified user, see Actions. If an IAM user is requesting to query their own login protection configuration, the user token (no special permission requirements) of the user is required.

Response Parameters

Status code: 200

**Table 3** Parameters in the response body
Parameter	Type	Description
login_protect	object	Login protection configuration.

**Table 4** login_protect
Parameter	Type	Description
enabled	Boolean	Indicates whether login protection has been enabled for an IAM user. The value can be true or false.
user_id	String	IAM user ID.
verification_method	String	Login authentication method of the IAM user.

Example Request

Request for querying the login protection configuration of an IAM user

GET https://iam.myhuaweicloud.com/v3.0/OS-USER/users/{user_id}/login-protect

Example Response

Status code: 200

The request is successful.

{ 
  "login_protect" : { 
    "user_id" : "16b26081f43d4c628c4bb88cf32e9...", 
    "enabled" : true, 
    "verification_method" : "vmfa" 
  } 
}

Status code: 403

Access denied.

Example 1

{ 
   "error_msg" : "You are not authorized to perform the requested action.", 
   "error_code" : "IAM.0002" 
 }

Example 2

{ 
   "error_msg" : "Policy doesn't allow %(actions)s to be performed.", 
   "error_code" : "IAM.0003" 
 }

Status code: 404

The requested resource cannot be found.

{ 
  "error_msg" : "Could not find %(target)s: %(target_id)s.", 
  "error_code" : "Iam.0004" 
}

This API cannot be used to obtain the login protection configurations of users for whom login protection is disabled, and will return the error code IAM.0004.

Status code: 500

Internal server error.

{ 
  "error_msg" : "An unexpected error prevented the server from fulfilling your request.", 
  "error_code" : "IAM.0006" 
}

Status Codes

Status Code	Description
200	The request is successful.
401	Authentication failed.
403	Access denied.
404	The requested resource cannot be found.
500	Internal server error.

Error Codes

For details, see Error Codes.

Parent topic: Security Settings

Previous topic: Querying Login Protection Configurations of IAM Users

Next topic: Modifying the Login Protection Configuration of an IAM User

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.

Chatbot