- What's New
- Service Overview
- Getting Started
-
User Guide
- Permissions Management
- Managing Organizations
- Managing OUs
- Managing Accounts
-
Managing SCPs
- Overview of an SCP
- Enabling or Disabling the SCP Type
- Creating an SCP
- Modifying or Deleting an SCP
- Attaching or Detaching an SCP
- Example SCPs
- System-defined SCPs
- Cloud Services for Using SCPs
- Regions for Using SCPs
-
Actions Supported by SCP-based Authorization
- Compute
- Storage
- Networking
- Containers
- Analytics
- Content Delivery & Edge Computing
- Databases
- Security & Compliance
- Internet of Things
- Middleware
- Developer Services
- Business Applications
-
Management & Governance
- Simple Message Notification (SMN)
- Log Tank Service (LTS)
- Identity and Access Management (IAM)
- Security Token Service (STS)
- Resource Formation Service (RFS)
- IAM Identity Center
- Organizations
- Resource Access Manager (RAM)
- Enterprise Project Management Service (EPS)
- Tag Management Service (TMS)
- Config
- IAM Access Analyzer
- Cloud Trace Service (CTS)
- Resource Governance Center (RGC)
- Application Operations Management (AOM)
- Cloud Eye (CES)
- IAM Identity Broker
- User Support
- Migration
- Managing Tag Policies
- Managing Trusted Services
- Managing Tags
- CTS Auditing
- Adjusting Quotas
-
API Reference
- Before You Start
- API Overview
- Calling APIs
-
APIs
- Managing Organizations
- Managing OUs
-
Managing Accounts
- Creating an Account
- Listing Accounts in an Organization
- Closing an Account
- Getting Account Information
- Updating an Account
- Removing the Specified Account
- Moving an Account
- Inviting an Account to Join an Organization
- Querying Account Creation Requests in Specified State
- Querying Account Creation Status
- Querying CloseAccount Requests in Specified State
- Managing Invitations
- Managing Trusted Services
- Managing Delegated Administrators
- Managing Policies
-
Managing Tags
- Listing Tags for the Specified Resource
- Adding Tags to the Specified Resource
- Removing Tags from the Specified Resource
- Listing Tags for the Specified Resource Type
- Adding Tags to the Specified Resource Type
- Deleting Tags with the Specified Key from the Specified Resource Type
- Querying Resource Instances by Resource Type and Tag
- Querying Number of Resource Instances by Resource Type and Tag
- Querying Resource Tags
- Others
- Permissions and Supported Actions
- Appendixes
- Change History
- FAQs
- General Reference
Copied.
Using Organizations to Manage Multiple Accounts
Scenarios
The Organizations service helps you govern multiple accounts within your organization. If your enterprise has multiple branches, departments, or different service applications, you can use Organizations to build a hierarchical cloud resource structure that aligns with your own management and operational methods. By using this service, you can create an organization to consolidate and centrally manage multiple Huawei Cloud accounts that would otherwise be scattered.
The following describes how to create an organization and organizational units (OUs) and how to invite accounts to join an organization, so you can manage multiple accounts in a structured manner.
Procedure
Step |
Description |
---|---|
|
|
Create an organization. |
|
Create multi-level OUs for the organization. |
|
(Organization management account) Invite other accounts to join the organization. |
|
Move member accounts to other OUs. |
Preparations
- Sign up for a HUAWEI ID, enable Huawei Cloud services, and complete enterprise real-name authentication.
- Visit the Huawei Cloud official website and click Sign Up in the upper right corner.
- Sign up for a HUAWEI ID and enable Huawei Cloud services.
After the sign-up is complete, you will be redirected to your personal information page.
- Complete enterprise real-name authentication.
- Enable Enterprise Center and become an enterprise master account.
Before creating an organization, you need to enable Enterprise Center and become an enterprise master account by following these steps:
- Go to the Enterprise Center console.
- Click Enable for Free. The Enable Enterprise Center page is displayed.
- Select I have read and agree to Huawei Cloud Enterprise Management Service Agreement and click Enable Now.
After you enable Enterprise Center, you will automatically become an enterprise master account.
- Top up your account.
Organizations is a free service. You will not be billed for using Organizations-related functions.
Ensure that your account balance is sufficient. If your account is frozen due to arrears, you cannot perform any write operations on the Organizations console. For details about how to top up your account, see Topping Up an Account.
Step 1: Create an Organization
- Log in to the management console.
- Click
in the upper left corner. In the service list, choose Management & Governance > Organizations.
- Click Enable Organizations.
After the Organizations service is enabled, your organization and the root are automatically created, and your login account is defined as the management account.
Step 2: Create OUs
You can create OUs and place your accounts in the OUs to group the accounts by a specific dimension, for example, by service scope, account owner, or application environment. The following provides an example of creating multi-level OUs. Up to five OU levels are supported.
- Access the Organizations console. On the Organization page, select the root OU, and choose Add > Add Organizational Unit.
- Enter the OU name (OU1 in this example) and click OK in the displayed dialog box.
- Select OU1 and repeat the preceding steps to create its child OUs (OU2 and OU3 in this example). The following figure shows the organizational structure.
Step 3: Invite Accounts to Join Your Organization
Now that you have an organization, you can begin to populate it with accounts. In this step, you invite existing accounts to join as members of your organization. You can also create accounts in your organization, and the accounts will automatically become part of your organization. For details, see Creating an Account.
The accounts you invite to join your organization must have completed enterprise or individual real-name authentication. For details, see Real-Name Authentication.
The original accounting relationship (master-member association) of invited accounts will remain unchanged.
- Access the Organizations console. On the Organization page, choose Add > Add Account.
- In the displayed dialog box, enter the name of the account you are inviting, for example, Account-1. Click OK. An invitation to join the organization will be sent to the account.
- Switch to the account Account-1, access the Organizations console, and click Accept. Account-1 will join the organization.
- Repeat the preceding steps to invite more accounts to join the organization.
Step 4: Move Accounts
By default, invited member accounts are placed under the organization root. You can log in as the organization management account to move the accounts to other OUs, so you can manage them more effectively.
- Log in to the Huawei Cloud console using the organization management account.
- Access the Organizations console. On the Organization page, select the account you want to move, and choose Manage > Move Account.
- Select the OU (OU2 in this example) you choose to hold the account, and enter "Confirm" in the text box. Then, click OK.
- Repeat the preceding steps to move more accounts to other OUs.
Follow-up Operations
After you create an organization, you can add, delete, modify, and query OUs and member accounts at any time. If you no longer need the organization, you can choose to delete it. The following links are for your reference:
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot