Creating a User and Granting Permissions
This section describes how to use IAM to implement fine-grained permissions control for your IEF resources. With IAM, you can:
Entrust a cloud account or cloud service to perform efficient O&M on your IEF resources.
If your account does not need individual IAM users, you may skip over this section.
This section describes the procedure for granting permissions (see Figure 1).
Process Flow
- Create a user group and assign permissions.
Create a user group on the IAM console, and assign the IEF ReadOnlyAccess policy to the group. When assigning permissions to a user group, set Scope to Region-specific projects, and set parameters according to the following rules:
- To assign permissions in certain regions, select one or more specified projects, for example, cn-north-4 [CN North-Beijing4]. Note: If you select All Projects in this scenario, the authorization will not take effect.
- To assign permissions in all regions, select All projects.
Figure 2 Assigning permissions in certain regions
Figure 3 Assigning permissions in all regions
- Create an IAM user and add the user to the user group.
Create a user on the IAM console and add the user to the group created in 1.
- Log in and verify permissions.
Log in to the IEF console by using the user created in 2, and verify that the user has the administrator permissions for IEF.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
