Help Center > > User Guide> Permissions Management> Creating a User and Granting Permissions

Creating a User and Granting Permissions

Updated at: Jun 09, 2021 GMT+08:00

You can use IAM to implement refined permission control for DAS resources. To be specific, you can:

  • Create IAM users for employees from different departments of your enterprise. In this way, each IAM user has a unique security credential to use DAS resources.
  • Grant only the permissions required for users to perform a specific task.
  • Entrust a HUAWEI CLOUD account or cloud service to perform efficient O&M on your DAS resources.

If your HUAWEI CLOUD account does not require individual IAM users, skip this chapter.

Figure 1 describes how to grant permissions to a user group.

To assign DAS permissions through IAM, see Creating a User Group and Assigning Permissions.

To assign DAS permissions through EPS, see Adding a User to an Enterprise Project.

Prerequisites

Before granting permissions to a user group, learn about the DAS system policies that can be added, and select a policy based on service requirements, as shown in Permissions Management. For the system policies of other services, see Permission Policies.

Process Flow

Figure 1 Process for granting DAS permissions
  1. Create a user group and assign permissions to it.

    Create a user group on the IAM console, and attach the DAS FullAccess policy to the group.

  2. Create an IAM user.

    Create a user on the IAM console and add the user to the group created in 1.

  3. Log in and verify permissions.

    In the service list, choose Data Admin Service. On the displayed DAS console, click Add Login. If login information can be successfully added, the DAS policy has already taken effect.

Did you find this page helpful?

Submit successfully!

Thank you for your feedback. Your feedback helps make our documentation better.

Failed to submit the feedback. Please try again later.

Which of the following issues have you encountered?







Please complete at least one feedback item.

Content most length 200 character

Content is empty.

OK Cancel