Creating a User and Granting GaussDB(DWS) Permissions
Before using GaussDB(DWS), register a Huawei Cloud account. If you need to manage account permissions more precisely, use Identity and Access Management (IAM).
Registering a Public Cloud Account
If you do not have a Huawei Cloud account, register one.
- Open the official public cloud website (https://www.huaweicloud.com/intl/en-us/) and click Register in the upper right corner. The registration page is displayed.
- Enter registration information as prompted..
- After the registration is successful, you can be automatically logged in to Huawei Cloud.
Using GaussDB(DWS) with IAM
This section describes how to use IAM to implement fine-grained permissions control for your GaussDB(DWS) resources. With IAM, you can:
- Create IAM users for employees based on the organizational structure of your enterprise. Each IAM user has their own security credentials, providing access to GaussDB(DWS) resources.
- Grant only the permissions required for users to perform specific tasks.
- Entrust a Huawei Cloud account or service to perform professional and efficient O&M on your GaussDB(DWS) resources.
If your Huawei Cloud account does not need individual IAM users, skip this section.
This section describes the procedure for granting permissions (see IAM usage process).
Prerequisites for Using IAM
Before assigning permission policies to a user group, you need to understand the GaussDB(DWS) permission policies. For details about the system policies supported by GaussDB(DWS), see Supported System Policies. For the system policies of other services, see System Permissions.
IAM usage process
- Create a user group and assign permissions.
Use the Huawei Cloud account to log in to the IAM console, create a user group, and attach the DWS ReadOnlyAccess policy to the group.
- Create a user and add it to a user group .
Create a user on the IAM console and add the user to the group created in Step 1.
- Log in and verify the permissions.
Log in to the management console by using the user created and verify the user permissions.
- Choose Service List > Data Warehouse Service to enter the GaussDB(DWS) management console, and click Create DWS Cluster to create a data warehouse cluster. If you cannot create one, the DWS ReadOnlyAccess policy has taken effect.
- Choose any other service in Service List. If only the DWS ReadOnlyAccess policy is added and a message is displayed indicating that you have insufficient permission to access the service, DWS ReadOnlyAccess has taken effect.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot