Authentication and Access Control
CSS uses Identity and Access Management (IAM) and cluster security mode to perform authentication and access control for service resources and security clusters, respectively. The two modules are independent of each other.
IAM is used to control resource operation permissions on the CSS management plane. If you need to assign different permissions to employees in your organization to access your CSS resources, IAM is a good choice for fine-grained permissions management. IAM provides identity authentication, permissions management, and access control, helping you secure access to your CSS resources. For details about CSS permission management, see Permissions Management.
When the security mode is enabled for an Elasticsearch or OpenSearch cluster, user authentication is required for accessing the cluster. On Kibana (Elasticsearch) or OpenSearch Dashboards (OpenSearch), you can create users and grant them cluster access. For more information, see Creating Users for an Elasticsearch Cluster and Granting Cluster Access or Creating Users for an OpenSearch Cluster and Granting Cluster Access. CSS supports identity authentication and access control only for clusters in security mode.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
