Creating a User and Granting OA Permissions
This section describes how to use IAM to implement fine-grained permissions control for your cloud resources. With IAM, you can:
- Create IAM users for employees based on the organizational structure of your enterprise. Each IAM user has their own security credentials, providing access to OA resources.
- Grant only the permissions required for users to perform a specific task.
If your Huawei Cloud account does not require individual IAM users, skip this chapter.
This section describes the procedure for granting permissions, as shown in Figure 1.
Prerequisites
Learn about the permissions supported by OA and choose policies or roles according to your requirements.
For details about the system policies supported by OA and the comparison between policies, see Permissions Management. For the system policies of other services, see System Permissions.
Permission Granting Process
- Create a user group on the IAM console, and assign the OA FullAccessPolicy, OA AdvancedOperationsPolicy, OA CommonOperationsPolicy, and OA ReadOnlyAccessPolicy permissions to the group. You are advised to assign the OA FullAccessPolicy permission to the group.
- All permissions for OA are listed as above. For more about OA permissions, see Permissions Management.
- Create an IAM user.
Create a user on the IAM console and add the user to the group created in 1.
- Log in and verify permissions.
Log in to the OA console as the created user, and verify that it only has the OA FullAccessPolicy permission.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
