Example Permission Configuration
You can select roles and policies to grant permissions. This section provides common permission configuration examples. For details about how to configure permissions, see Creating a User and Granting CPH Permissions.
Example permission configuration:
- Granting all permissions
- Granting operation permissions
- Granting read-only permissions
- Granting permissions to perform specified operations
To grant all permissions for CPH to your IAM users, authorize the CPH Administrator role, the dependent Security Administrator role, and the dependent VPC FullAccess policy.
![](https://support.huaweicloud.com/intl/en-us/usermanual-cph/en-us_image_0000001573045804.png)
Operation permissions allow IAM users to operate but not to create or delete cloud phone servers or cloud phones. To grant the CPH operation permissions to IAM users, you need to assign the CPH Administrator role, the VPC FullAccess policy, and custom policies that deny the Create action to the IAM users. Figure 2 shows how to create a custom policy. For details about how to create a custom policy, see Creating a Custom Policy. Figure 3 shows how to grant operation permissions.
To grant the read-only permissions for CPH to IAM users, authorize the CPH User and Tenant Guest roles.
![](https://support.huaweicloud.com/intl/en-us/usermanual-cph/en-us_image_0000001623909037.png)
To grant an IAM user the permissions to perform specified operations on CPH, create a custom policy for allowing or denying specified operations. Figure 5 shows how to create a custom policy. For details about how to create a custom policy, see Creating a Custom Policy.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot