Help Center/ ROMA Connect/ User Guide/ Permissions/ Assigning ROMA Connect Permissions
Updated on 2023-11-29 GMT+08:00
View PDF
Share

Assigning ROMA Connect Permissions

Overview

This section describes how to use IAM to implement fine-grained permissions control for your ROMA Connect resources. With IAM, you can:

  • Create IAM users for employees based on the organizational structure of your enterprise. Each IAM user has their own security credentials, providing access to ROMA Connect resources.
  • Grant only the permissions required for users to perform a task.
  • Entrust a Huawei Cloud account or cloud service to perform professional and efficient O&M on your ROMA Connect resources.

If your Huawei Cloud account does not need individual IAM users, then you may skip this chapter.

Prerequisites

Learn about the permissions (see Permissions Management) supported by ROMA Connect and choose policies or roles according to your requirements. For the system-defined policies of other services, see System Permissions.

Creating a User and Assigning Permissions

  1. Create a user group and assign permissions to it.

    Create a user group on the IAM console, and assign the ROMA ReadOnlyAccess policy to the group.

  2. Create an IAM user.

    Create a user on the IAM console and add the user to the group created in 1.

  3. Log in and verify permissions.

    Log in to the management console by using the user created, and verify that the user has the granted permissions.

    • Choose Service List > Enterprise Application > Application & Data Integration Platform ROMA. On the ROMA Connect console, click Buy ROMA Instance in the upper right corner. If a message appears indicating that you have insufficient permissions to perform the operation, the ROMA ReadOnlyAccess policy has already taken effect.
    • Choose any other service in Service List. If a message appears indicating that you have insufficient permissions to perform the operation, the ROMA ReadOnlyAccess policy has already taken effect.

Assigning Permissions to an Existing User Group

  1. Assign permissions to a user group.

    Select an existing user group and assign the ROMA ReadOnlyAccess policy to it.

  2. Log in and verify permissions.

    Log in to the management console using a user in the user group in 1, switch to the authorized region, and verify the user's permissions.

    Choose Service List > Enterprise Application > Application & Data Integration Platform ROMA. On the ROMA Connect console, click Buy ROMA Instance in the upper right corner. If a message appears indicating that you have insufficient permissions to perform the operation, the ROMA ReadOnlyAccess policy has already taken effect.

Parent topic: Permissions