Before using the BMS service, you need to make the following preparations:
- Register with HUAWEI CLOUD and Complete Real-Name Authentication
- Top Up an Account
- Create an IAM User
- (Optional) Create a Key Pair
Register with HUAWEI CLOUD and Complete Real-Name Authentication
If you already have a HUAWEI CLOUD account, skip this part. If you do not have a HUAWEI CLOUD account, perform the following steps to create one:
- Visit https://www.huaweicloud.com/intl/ and click Register.
- On the displayed Register page, register an account as prompted.
After you have successfully registered, the system automatically redirects you to your personal information page.
- Complete real-name authentication by following the instructions in Real-Name Authentication.
Top Up an Account
Ensure that your account has sufficient balance.
Create an IAM User
If you want to allow multiple users to manage your resources without sharing your password or private key, you can create users using IAM and grant permissions to the users. These users can use specified login links and their own accounts to access the public cloud and help you efficiently manage resources. You can also set account security policies to ensure the security of these accounts and reduce enterprise information security risks.
If you have registered on the public cloud platform but have no IAM user, you can create one on the IAM console. For example, to create a BMS administrator, perform the following steps:
- Enter your username and password to log in to the management console.
- In the upper right corner of the page, click the username and select Identity and Access Management.
- In the navigation pane, choose Users. In the right pane, click Create User.
- Enter basic user information as prompted.
- Username: Enter a username, for example, bms_administrator.
- Credential Type: Select Password.
- A password can be used to log in to the management console and enable development tools (such as APIs, the CLI, and SDK) that can access cloud services through password authentication. This is the recommended option because the security administrator manages users.
- Access keys are used to enable development tools (such as APIs, the CLI, and SDK) that can access cloud services through key authentication.
- In the User Groups area, select admin from the drop-down list.
- Description: Enter description of the user, for example, BMS administrator.
- Click Next. Select Set manually for Password Type.
A BMS administrator can log in to the management console and manage users. You are advised to select Set manually for Password Type when you create a BMS administrator for your domain. If you create a BMS administrator for another user, you are advised to select Set at first login for Password Type instead so that the user can set their own password.
- Select Require Password Reset to ensure that the BMS administrator is forced to change the password the first time the administrator logs in. The Require Password Reset option is selected by default. It is recommended that you retain the default setting to ensure that the security administrator account password is set by the security administrator, preventing password leakage.
- Specify Email, Mobile Number, Password, and Confirm Password.
- Click OK.
After the user is created, you can use the IAM user login link above the list and the created user to log in to the console.
(Optional) Create a Key Pair
The cloud platform uses the public key cryptography to protect the login information of your BMS. You need to specify the key pair name and provide the private key when logging in to the BMS using SSH if you choose the key pair login mode. If you choose the password login mode, skip this task.
If you have no key pair, create one on the management console.
If you want to create BMSs in multiple regions, you need to create a key pair in each region. For more information about regions, see Region and AZ.
- Log in to the management console.
- Under Computing, click Bare Metal Server.
The BMS console is displayed.
- In the navigation tree, choose Key Pair.
- On the right side of the page, click Create Key Pair.
- Enter the key name and click OK.
An automatically allocated key name consists of KeyPair- and a 4-digit random number. Change it to an easy-to-remember one, for example, KeyPair-xxxx_bms.
- Download the private key file. Alternatively, the system will automatically download it for you. The file name is the specified key pair name with a suffix of .pem. Securely store the private key file. In the displayed dialog box, click OK.
This is the only opportunity for you to save the private key file. Keep it secure. When creating a BMS, provide the name of the desired key pair. Each time you log in to the BMS using SSH, provide the private key.