- Service Overview
- Billing
- Getting Started
-
User Guide
- Before You Start
- Buying an Instance
- Instance Management
-
Enterprise Administrator Guide
- Logging In to the OneAccess Administrator Portal
- User Management
-
Resources
- Overview
-
Applications
- Adding an Application
- Enabling, Disabling, or Deleting an Application
- General Information
- Authentication Integration
- Synchronization Integration
- Login Configuration
- Access Control
- Object Models
- Authorization Management
- API Permission Management
- Application Permission Management
- Security Settings
- Audit Logs
- APIs
- Authentication
- Security
- Audit
- Settings
- Common User Guide
- Key Operations Recorded by CTS
-
Best Practices
- OneAccess Best Practices
- Identity Source Integration
-
Application Integration
-
Logging In to the Huawei Cloud Through User Portal
- Introduction
- Logging In to Single Huawei Cloud Account via OneAccess Without Password (SAML - Virtual User SSO)
- Logging In to Multiple Huawei Cloud Accounts via OneAccess Without Password (SAML - Virtual User SSO)
- Logging In to Single Huawei Cloud Account via OneAccess Without Password (SAML - IAM User SSO)
- Logging In to Multiple Huawei Cloud Accounts via OneAccess Without Password (SAML - IAM User SSO)
- Logging In to Huawei Cloud via OneAccess Without Password (OIDC)
- SSO Access to Applications Through SAML
- SSO Access to Applications Through OAuth 2.0
- SSO Access to Applications Through OIDC
- SSO Access to Applications Through CAS
- SSO Access to Applications Through Plug-in Autocompletion
-
Logging In to the Huawei Cloud Through User Portal
- Data Synchronization
- Authentication Provider Integration
- Authorizing IAM Users to Access a OneAccess Instance Administrator Portal
- API Usage
- Configuring MFA for User Login
- Developer Guide
-
API Reference
- Before You Start
- API Overview
-
OneAccess APIs
-
Management APIs
- Calling APIs
- Access Credentials
-
User Management
- Creating a User
- Modifying a User
- Deleting a User
- Enabling a User
- Disabling a User
- Changing a User Password
- Verifying and Modifying the Original User Password
- Querying User Details by User ID
- Querying User Details by Username
- Querying the User List
- Authorizing an Application Account
- Querying All Authorized Application Accounts of a User
- Organization Management
- Application Organization Management
- Application Account Management
- Application Role Management
- User APIs
- Application Integration APIs
-
Management APIs
- Appendix
- FAQs
- General Reference
Show all
Copied.
Edition Differences
OneAccess provides Basic, Professional, and Enterprise editions. Table 1 describes the features supported by each edition.
- Basic: Provides basic functions with a quota of 100 or 500 users and supports yearly/monthly billing. It is suitable for small enterprises.
- Professional: Provides advanced functions (access control, permissions management, and capacity expansion) in addition to basic ones. The number of users can be 200 or 1,000 to 10,000. It meets high cost-effectiveness and reliability requirements of government organizations and medium and large enterprises. Yearly/month billing is supported.
- Enterprise: Provides independent resource deployment and advanced functions (access control and permissions management). It supports a maximum of 40,000 users and yearly/monthly billing, meeting the service requirements of large enterprises and governments.
Feature |
Basic |
Professional |
Enterprise |
---|---|---|---|
Capacity expansion |
Supported |
Supported |
Not supported |
Conditional access control |
Not supported |
Supported |
Supported |
Custom API access control |
Not supported |
Supported |
Supported |
Fine-grained permissions |
Not supported |
Supported |
Supported |
Identity synchronization |
Not supported |
Supported |
Supported |
CloudBridge agents |
Not supported |
Supported |
Supported |
Organizations and users |
Supported |
Supported |
Supported |
Custom user attributes |
Supported |
Supported |
Supported |
Authentication via OAuth 2.0, SAML, OIDC, CAS, plug-in autofill, or OpenAPI |
Plug-in autofill and OpenAPI are not supported. |
Supported |
Supported |
Identity sources (WeCom, DingTalk, Lark, AD, LDAP, XinRenXinShi, Beisen, MCHR, SAP SuccessFactors, and Weaver e-cology9.0) |
Supported |
Supported |
Supported |
Manual and automatic application authorization |
Supported |
Supported |
Supported |
Internal and custom APIs |
Custom APIs are not supported. |
Supported |
Supported |
Authentication provider |
WeChat, Weibo, QQ, Alipay, DingTalk, WeLink, WeCom, Cloud Hub, Lark, eteams, AD, and LDAP |
WeChat, Weibo, QQ, Alipay, DingTalk, WeLink, WeCom, Cloud Hub, Lark, eteams, SAML, OIDC, OAuth, CAS, AD, LDAP, Kerberos, and FIDO2 |
WeChat, Weibo, QQ, Alipay, DingTalk, WeLink, WeCom, Cloud Hub, Lark, eteams, SAML, OIDC, OAuth, CAS, AD, LDAP, Kerberos, and FIDO2 |
Regions |
Not supported |
Supported |
Supported |
Administrator permissions |
Supported |
Supported |
Supported |
Password policy |
Supported |
Supported |
Supported |
Audit |
Supported |
Supported |
Supported |
Enterprise information |
Supported |
Supported |
Supported |
SMS gateway |
Supported |
Supported |
Supported |
Email gateway |
Supported |
Supported |
Supported |
DingTalk gateway |
Supported |
Supported |
Supported |
Voice gateway |
Supported |
Supported |
Supported |
Dictionaries |
Supported |
Supported |
Supported |
Data import |
Supported |
Supported |
Supported |
Entire parameter settings |
Supported |
Supported |
Supported |
Built-in and custom UI templates |
Supported |
Supported |
Supported |
Service configuration |
Supported |
Supported |
Supported |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot