Help Center> Managed Threat Detection> FAQs> About Functions> How Do I Use My IAM Account to Grant MTD Permissions to a User of the Account?
Updated on 2023-06-13 GMT+08:00

How Do I Use My IAM Account to Grant MTD Permissions to a User of the Account?

When you use an IAM user to create a detector or perform other operations on the MTD console, you need to grant the user related permissions using the IAM account.

Prerequisites

An IAM user has been created and added to the user group.

Step 1: Create a Custom Policy

  1. Log in to the IAM console.
  2. On the IAM console, choose Permissions > Policies/Roles from the navigation pane, and click Create Custom Policy in the upper right corner.

    Figure 1 Creating a custom policy

  3. On the Create Custom Policy page, configure required parameters as needed.

    • Policy Name: Enter a policy name.
    • Scope: Select Project-level services.
    • Policy View: Select Visual editor.
    • Policy Content: Select Allow.
      1. On the Allow tab, select Allow.
      2. On the Select service tab, enter MTD in the search box and select Threat Detection Service (MTD).
        Figure 2 Entering a policy name
      3. On the Actions tab, click Select all.
        Figure 3 Selecting all actions

  4. Click OK.

Step 2: Grant Permissions to the User Group

  1. On the IAM console, choose User Groups from the navigation pane.
  2. In the row containing the target user group, click Manage Permissions in the Operation column.

    Figure 4 Managing permissions

  3. On the Permissions Assigned tab, click Assign.

    Figure 5 Assigning permissions

  4. In the Scope pane, select Region-specific projects.
  5. In the Permissions pane, select the policy create in Step 1: Create a Custom Policy.

    Figure 6 Granting a policy to the user group

  6. Click OK.

About Functions FAQs

more