Help Center/ Cloud Trace Service/ User Guide/ Permissions Management
Updated on 2023-12-15 GMT+08:00

Permissions Management

This chapter describes how to use IAM for fine-grained permissions control for your CTS resources. With IAM, you can:

  • Create IAM users for employees based on your enterprise's organizational structure. Each IAM user will have their own security credentials for accessing CTS resources.
  • Manage permissions on a principle of least permissions (PoLP) basis.
  • Entrust other Huawei Cloud accounts or cloud services to perform efficient O&M on your CTS resources.

If your Huawei Cloud account does not need IAM users, you can skip this section.

Prerequisites

Learn about the permissions (see Permissions Management) supported by CTS and choose policies or roles according to your requirements. For the permissions of other services, see System-defined Permissions.

Process Flow

Figure 1 Process of granting CTS permissions
  1. Create a user group and assign permissions.

    Create a user group on the IAM console, and attach the CTS Administrator policy to the group.

  2. Create an IAM user.

    Create a user on the IAM console and add the user to the user group created in 1.

  3. Log in and verify permissions.

    Log in to the console as the user you created, and verify that the user has the assigned permissions.