Updated on 2024-07-17 GMT+08:00

How Do I Create an IAM Agency?

Scenarios

During cross-region image replication, an agency is required to verify cloud service permissions in the destination region. So, create a cloud service agency before the replication.

Background

An agency is a trusted relationship established between you and other Huawei Cloud accounts or cloud services. If you have purchased multiple types of cloud resources on Huawei Cloud, you can create an agency through IAM to establish this trusted relationship with a company or cloud service for secure and efficient O&M on certain types of your resources.

Procedure

  1. Log in to the management console.
  2. In the upper right corner of the page, click the username and select Identity and Access Management.
  3. In the navigation pane, choose Agencies.
  4. Click Create Agency.
  5. On the Create Agency page, set the following parameters:
    • Agency Name: Enter an agency name, such as ims_admin_agency.
      Figure 1 Creating an agency
    • Agency Type: Select Cloud service.
    • Cloud Service: This parameter is available only if you select Cloud service for Agency Type. Select Image Management Service (IMS) from the drop-down list.
    • Validity Period: Select Unlimited.
    • Description: This parameter is optional. You can enter Agency with IMS Administrator privileges.
  6. Click Next.
    • Select Region-specific projects for Scope and select one or more projects from the drop-down list.

      In cross-region image replication, the agency must have the IMS Administrator permissions for the destination region. For example, if you want to replicate an image from CN-Hong Kong to CN East-Shanghai2, the agency must have the IMS Administrator permissions for CN East-Shanghai2.

      Do not select All projects, or the created agency will be invalid.

    • Select IMS Administrator for Permissions.
    Figure 2 Granting permissions to an agency
  7. Click OK.
    Figure 3 New agency
    Figure 4 Permissions of the new agency