Logging In via SSO

The SSO login command of KooCLI stores users' authentication information in the configuration file, eliminating the need for frequently entering the information during operations. Run the following command to implement SSO login:

hcloud configure sso

After pressing Enter, enter an SSO profile name (name of the profile to save after SSO login, required), SSO start URL (portal URL, required), SSO region (region where the IAM Identity Center instance is enabled, required), and Region (default or common cloud service region, optional) as prompted.

hcloud configure sso
? Input SSO profile name [required]:  sso
? Input SSO start URL [required]:  https://idcenter.huaweicloud.com/d-3********6/portal
? Input SSO region [required]:  ap-southeast-1
? Input Region:  ap-southeast-1
Browser opened. Log in via SSO...
? Choose account name: ACCOUNT_01
? Choose permission set name: PERMISSION_01
SSO login successful.

The SSO login page cannot be automatically displayed in environments without a browser, such as Linux. In this case, open the printed URL with a browser in another environment.
After web page login, use the up and down arrow buttons to select an account name and permission set name, or enter a keyword, and press Enter.
After SSO login, you can only call APIs of the specified services.

After the login is complete, run the following command to view the saved authentication information and its expiration time:

hcloud configure show --cli-profile=${profileName}

hcloud configure show --cli-profile=sso
{
  "name": "sso",
  "mode": "SSO",
  "accessKeyId": "",
  "secretAccessKey": "",
  "securityToken": "",
  "region": "ap-southeast-1",
  "projectId": "",
  "domainId": "",
  "skipSecureVerify": "false",
  "readTimeout": 10,
  "connectTimeout": 5,
  "retryCount": 0,
  "ssoParam": {
    "startUrl": "https://idcenter.huaweicloud.com/d-3********6/portal",
    "ssoRegion": "ap-southeast-1"
  },
  "ssoAuth": {
    "accessTokenResult": {
      "accessToken": "****",
      "expiresAt": "2024-05-08 00:52:50"
    },
    "accountId": "0cb8************************c3a0",
    "agencyUrn": "iam::0cb8************************c3a0:agency:Sys**********_*******_dc************e8"
  }
}

Parent topic: Configuration Management

Previous topic: Setting Custom Parameters in a Profile

Next topic: Querying the Profile List

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.

Chatbot