Help Center/ Storage Disaster Recovery Service/ User Guide/ Permissions Management/ Creating a User and Granting SDRS Permissions
Updated on 2024-10-29 GMT+08:00

Creating a User and Granting SDRS Permissions

You can use IAM for fine-grained permissions control on SDRS resources. With IAM, you can:

  • Create IAM users for personnel based on your enterprise's organizational structure. Each IAM user has their own identity credentials for accessing SDRS resources.
  • Grant only the permissions required for users to perform a task.
  • Entrust a HUAWEI ID or a cloud service to perform efficient O&M on your SDRS resources.

If your HUAWEI ID meets your permissions requirements, you can skip this section.

This section describes the procedure for granting permissions (see Figure 1).

Prerequisites

You have learnt about the system-defined role in SDRS Permissions. To grant permissions of other services, see System Permissions.

Process Flow

Figure 1 Process for granting SDRS permissions
  1. Create a user group and assign permissions to it.

    Create a user group on the IAM console, and attach the SDRS Administrator and VPC Administrator policies to the group.

  2. Create an IAM user and add it to the user group.

    Create a user on the IAM console and add the user to the group created in 1.

  3. Log in and verify permissions.

    Log in to the SDRS console as the created user, and verify the user's permissions for SDRS.

    • Choose Service List > Storage Disaster Recovery Service. Click Create Protection Group on the SDRS console. If a protection group can be successfully created, the SDRS Administrator policy has already taken effect.
    • Choose another service in the Service List. If a message appears indicating insufficient permissions to access the service, the SDRS Administrator policy has already taken effect.
    • Create a disaster recovery drill and select Automatically create for the drill VPC. If the drill is successfully created, the VPC Administrator policy has already taken effect.