- What's New
- Function Overview
- Service Overview
- Billing
- Getting Started
- User Guide
-
Best Practices
- Using Global Accelerator to Speed Up Cross-Border Access to Web Servers
- Using CDN and Global Accelerator to Speed Up Cross-Border Access
- Using Global Accelerator to Speed Up Cross-Border Access to Third-Party On-premises Servers
- Using Global Accelerator to Accelerate Communications Between Cloud and On-Premises Servers and Implement Multi-active DR
- Transferring the Source IP Address of a Client
-
API Reference
- Before You Start
- API Overview
- Calling APIs
-
API
- Global Accelerator
- Listener
- Endpoint Group
- Endpoint
- Health Check
-
IP Address Group
- Creating an IP Address Group
- Querying IP Address Groups
- Querying Details of an IP Address Group
- Updating an IP Address Group
- Deleting an IP Address Group
- Adding CIDR Blocks to an IP Address Group
- Removing CIDR Blocks from an IP Address Group
- Associating an IP Address Group with a Listener
- Disassociating an IP Address Group from a Listener
- Region
- Tag
- Log
- Permissions Policies and Supported Actions
- Appendix
- SDK Reference
-
FAQs
- Can I Use the Ping Command to Test Latency?
- How Will I Be Billed for Global Accelerator?
- How Can I Increase the Global Accelerator Quotas?
- How Can I Use Traffic Dial to Distribute Traffic?
- What Types of Endpoints Can Be Added to a Global Accelerator?
- Can I Use Global Accelerator in an Area That Is Not Listed Among the Acceleration Areas?
- What Are the Statuses and Health Check Results of Endpoints?
- What Should I Do If an Endpoint Is Unhealthy?
- Most Frequently Asked Questions
- Configuring the TOA Module
- How Can I Use Global Accelerator to Enable European Users to Access the Applications Deployed in or Outside the Chinese Mainland (Excluding Europe) Faster?
- General Reference
Show all
Copied.
Creating a User and Granting Permissions
Use IAM to implement fine-grained permissions control for your Global Accelerator resources. With IAM, you can:
- Create IAM users for employees based on your enterprise's organizational structure. Each IAM user will have their own security credentials for accessing Global Accelerator resources.
- Grant only the permissions required for users to perform a specific task.
- Delegate another HUAWEI ID or cloud service to perform professional and efficient O&M on your Global Accelerator resources.
Skip this part if your HUAWEI ID does not require individual IAM users.
Figure 1 shows the process for granting permissions.
Prerequisites
You have learned about Global Accelerator permissions that can be assigned to the user group and select permissions based on actual requirements. For details about the system permissions of Global Accelerator, see Permissions. For the system policies of other services, see System Permissions.
Process Flow
- On the IAM console, create a user group and grant it permissions (GA FullAccess as an example).
- Create an IAM user and add it to the user group.
- Log in as the IAM user and verify permissions.
In the authorized region, perform the following operations:
- Click
on the upper left corner to display Service List and choose Networking > Global Accelerator. Click Buy Global Accelerator in the upper right corner. If the global accelerator is created, the GA FullAccess policy is in effect.
- Choose another service in Service List. If a message appears indicating that you do not have permissions to access the service, the GA FullAccess policy is in effect.
- Click
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot