Help Center> CloudTest> Service Overview> Security> Authentication and Access Control
Updated on 2022-12-05 GMT+08:00

Authentication and Access Control


You can access CloudTest using its UI, APIs, and SDKs. Regardless of the access mode, your requests are sent through REST APIs provided by CloudTest.

CloudTest APIs can be accessed only after requests are authenticated.

CloudTest supports two authentication modes:

  • Token: Requests are authenticated using tokens. By default, token authentication is required to access the CloudTest console.
  • AK/SK: Requests are encrypted using an AK/SK. This method is recommended because it provides higher security than token-based authentication.

Access Control

CloudTest controls user operations in two ways.

  • Role permission control: Roles and permissions are required for adding, deleting, modifying, and querying objects such as test plans, cases, suites, reports, and customized settings of CloudTest.
  • Fine-grained permission control (IAM): Operations such as querying tenant projects, setting project creators, and managing tenant project member lists require fine-grained authorization from IAM.