vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity

dds_umn_20240816

Browse Source 
Reviewed-by: Wagner, Fabian <fabian.wagner@t-systems.com>
Co-authored-by: Ru, Li Yi <liyiru7@huawei.com>
Co-committed-by: Ru, Li Yi <liyiru7@huawei.com>
This commit is contained in:
Ru, Li Yi 2024-09-06 11:03:49 +00:00 committed by zuul
parent f5b629cc78
commit 1f3e1fa49f
3 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
docs/dds/umn/dds_01_0017.html
View File

@ -3,7 +3,7 @@
<h1 class="topictitle1">User Permissions</h1> <h1 class="topictitle1">User Permissions</h1>
<div id="body1522807551708"><p id="dds_01_0017__en-us_topic_0054095658_p168570320024">IAM provides two types of user permissions by default: user management and resource management.</p> <div id="body1522807551708"><p id="dds_01_0017__en-us_topic_0054095658_p168570320024">IAM provides two types of user permissions by default: user management and resource management.</p>
<ul id="dds_01_0017__u8f0eb25ba1514424bc2e77eb3f260387"><li id="dds_01_0017__l2e33a568e55c47aea44c75c2f5e02509">User management refers to the management of users, user groups, and user group rights.</li><li id="dds_01_0017__lf545eb5ff6ac4f9b925c510c02d92abc">Resource management refers to the control operations that can be performed by users on cloud service resources.</li></ul> <ul id="dds_01_0017__u8f0eb25ba1514424bc2e77eb3f260387"><li id="dds_01_0017__l2e33a568e55c47aea44c75c2f5e02509">User management refers to the management of users, user groups, and user group rights.</li><li id="dds_01_0017__lf545eb5ff6ac4f9b925c510c02d92abc">Resource management refers to the control operations that can be performed by users on cloud service resources.</li></ul>
<p id="dds_01_0017__p64255115101012">For details, see <a href="https://docs.otc.t-systems.com/en-us/permissions/index.html" target="_blank" rel="noopener noreferrer">Permissions</a>.</p> <p id="dds_01_0017__p64255115101012">For details, see <a href="dds_01_0019.html">Permissions Management</a>.</p>
</div> </div>
<div> <div>
<div class="familylinks"> <div class="familylinks">

2
docs/dds/umn/dds_01_0019.html
View File

@ -6,7 +6,7 @@
<p id="dds_01_0019__p877618610400">If your account does not need individual IAM users for permissions management, you may skip over this topic.</p> <p id="dds_01_0019__p877618610400">If your account does not need individual IAM users for permissions management, you may skip over this topic.</p>
<p id="dds_01_0019__p1777715620407">IAM can be used free of charge. You pay only for the resources in your account. </p> <p id="dds_01_0019__p1777715620407">IAM can be used free of charge. You pay only for the resources in your account. </p>
<div class="section" id="dds_01_0019__section11669153094014"><h4 class="sectiontitle">DDS Permissions</h4><p id="dds_01_0019__p123468483429">By default, new IAM users do not have permissions assigned. You need to add a user to one or more groups, and attach permissions policies or roles to these groups. Users inherit permissions from the groups to which they are added and can perform specified operations on cloud services based on the permissions.</p> <div class="section" id="dds_01_0019__section11669153094014"><h4 class="sectiontitle">DDS Permissions</h4><p id="dds_01_0019__p123468483429">By default, new IAM users do not have permissions assigned. You need to add a user to one or more groups, and attach permissions policies or roles to these groups. Users inherit permissions from the groups to which they are added and can perform specified operations on cloud services based on the permissions.</p>
<p id="dds_01_0019__p465411418443">DDS is a project-level service deployed and accessed in specific physical regions. To assign GaussDB NoSQL permissions to a user group, specify the scope as region-specific projects and select projects for the permissions to take effect. If <strong id="dds_01_0019__b8539855192414">All projects</strong> is selected, the permissions will take effect for the user group in all region-specific projects. When accessing DDS, users need to switch to a region where they have been authorized to use DDS.</p> <p id="dds_01_0019__p465411418443">DDS is a project-level service deployed and accessed in specific physical regions. To assign DDS permissions to a user group, specify the scope as region-specific projects and select projects for the permissions to take effect. If <strong id="dds_01_0019__b8539855192414">All projects</strong> is selected, the permissions will take effect for the user group in all region-specific projects. When accessing DDS, users need to switch to a region where they have been authorized to use DDS.</p>
<p id="dds_01_0019__p960351094710">You can grant users permissions by using roles and policies.</p> <p id="dds_01_0019__p960351094710">You can grant users permissions by using roles and policies.</p>
<ul id="dds_01_0019__ul1271812443397"><li id="dds_01_0019__li207994912487">Roles: A type of coarse-grained authorization mechanism that defines permissions related to user responsibilities. This mechanism provides only a limited number of service-level roles for authorization. When using roles to grant permissions, you need to also assign other roles on which the permissions depend to take effect. However, roles are not an ideal choice for fine-grained authorization and secure access control.</li><li id="dds_01_0019__li87474614813">Policies: A type of fine-grained authorization mechanism that defines permissions required to perform operations on specific cloud resources under certain conditions. This mechanism allows for more flexible policy-based authorization, meeting requirements for secure access control. For example, you can grant DDS users only the permissions for managing a certain type of resources. </li></ul> <ul id="dds_01_0019__ul1271812443397"><li id="dds_01_0019__li207994912487">Roles: A type of coarse-grained authorization mechanism that defines permissions related to user responsibilities. This mechanism provides only a limited number of service-level roles for authorization. When using roles to grant permissions, you need to also assign other roles on which the permissions depend to take effect. However, roles are not an ideal choice for fine-grained authorization and secure access control.</li><li id="dds_01_0019__li87474614813">Policies: A type of fine-grained authorization mechanism that defines permissions required to perform operations on specific cloud resources under certain conditions. This mechanism allows for more flexible policy-based authorization, meeting requirements for secure access control. For example, you can grant DDS users only the permissions for managing a certain type of resources. </li></ul>
<p id="dds_01_0019__p157919387465"><a href="#dds_01_0019__table19889139134716">Table 1</a> lists all the system-defined roles and policies supported by DDS.</p> <p id="dds_01_0019__p157919387465"><a href="#dds_01_0019__table19889139134716">Table 1</a> lists all the system-defined roles and policies supported by DDS.</p>

2
docs/dds/umn/dds_glossary.html
View File

@ -1,7 +1,7 @@
<a name="dds_glossary"></a><a name="dds_glossary"></a> <a name="dds_glossary"></a><a name="dds_glossary"></a>
<h1 class="topictitle1">Glossary</h1> <h1 class="topictitle1">Glossary</h1>
<div id="body1517556191283"><p id="dds_glossary__p40266582152331">For details about the glossaries in this document, see <a href="https://docs.otc.t-systems.com/en-us/glossary/index.html" target="_blank" rel="noopener noreferrer">Glossary</a>.</p> <div id="body1517556191283"><p id="dds_glossary__p40266582152331">For details about the glossaries in this document, see <a href="https://docs.otc.t-systems.com/glossary/index.html" target="_blank" rel="noopener noreferrer">Glossary</a>.</p>
</div> </div>
<div></div> <div></div>