vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/as/umn/as_07_0102.html
guoyanyan a80bb7d522 as_umn_0325 
Reviewed-by: Pristromskaia, Margarita <margarita.pristromskaia@t-systems.com>
Co-authored-by: guoyanyan <guoyanyan3@huawei.com>
Co-committed-by: guoyanyan <guoyanyan3@huawei.com>
2023-04-13 12:10:58 +00:00

25 lines
4.7 KiB
HTML
Raw Blame History

<a name="as_07_0102"></a><a name="as_07_0102"></a>
<h1 class="topictitle1">Creating a User and Granting AS Permissions</h1>
<div id="body1558577463365"><div class="section" id="as_07_0102__section2495449014355"><h4 class="sectiontitle">Scenarios</h4><p id="as_07_0102__p19341341165"><a href="https://docs.otc.t-systems.com/identity-access-management/umn/service_overview/what_is_iam.html" target="_blank" rel="noopener noreferrer">IAM</a> can help you implement fine-grained permissions control over your AS resources. With IAM, you can</p>
<ul id="as_07_0102__ul17995143562"><li id="as_07_0102__li46646558613">Create IAM users for employees based on your enterprise's organizational structure. Each IAM user will have their own security credentials for accessing AS resources.</li><li id="as_07_0102__li174131154713">Grant only the permissions required for users to perform a specific task.</li><li id="as_07_0102__li115110918717">Use <a href="https://docs.otc.t-systems.com/identity-access-management/umn/service_overview/what_is_iam.html" target="_blank" rel="noopener noreferrer">IAM</a> to entrust an account or cloud service to perform efficient O&amp;M on your AS resources.</li></ul>
<p id="as_07_0102__p87391417299">If your account does not require individual IAM users, skip this section.</p>
<p id="as_07_0102__p78941506910">This section describes the procedure for granting permissions (see <a href="#as_07_0102__fig1515164216142">Figure 1</a>).</p>
</div>
<div class="section" id="as_07_0102__section6126111243014"><h4 class="sectiontitle">Prerequisites</h4><p id="as_07_0102__p1626720301296">Learn about the permissions (see <a href="as_pro_0007.html">Permissions Management</a>) supported by AS and choose policies or roles according to your requirements. For the permissions of other services, see <a href="https://docs.otc.t-systems.com/additional/permissions.html" target="_blank" rel="noopener noreferrer">Permission Description</a>.</p>
</div>
<div class="section" id="as_07_0102__section203711514125317"><h4 class="sectiontitle">Process Flow</h4><div class="fignone" id="as_07_0102__fig1515164216142"><a name="as_07_0102__fig1515164216142"></a><a name="fig1515164216142"></a><span class="figcap"><b>Figure 1 </b>Process for granting AS permissions</span><br><span><img id="as_07_0102__image3885631155319" src="en-us_image_0171188722.jpg"></span></div>
<ol id="as_07_0102__ol102751734125416"><li id="as_07_0102__li10176121316284"><a name="as_07_0102__li10176121316284"></a><a name="li10176121316284"></a><a href="https://docs.otc.t-systems.com/identity-access-management/umn/getting_started/creating_a_user_group_and_assigning_permissions.html#iam-01-0030" target="_blank" rel="noopener noreferrer">Create a user group and assign permissions to it</a>.<p id="as_07_0102__p532014413567">Create a user group on the IAM console, and attach the <strong id="as_07_0102__b176945495157">AutoScaling ReadOnlyAccess</strong> policy to the group.</p>
</li><li id="as_07_0102__li122751534175417"><a href="https://docs.otc.t-systems.com/identity-access-management/umn/user_guide/user_and_user_group_management/creating_a_user.html#en-us-topic-0046611303" target="_blank" rel="noopener noreferrer">Create an IAM user and add it to the user group</a>.<p id="as_07_0102__p12757347540">Create a user on the IAM console and add the user to the group created in <a href="#as_07_0102__li10176121316284">1</a>.</p>
</li><li id="as_07_0102__li227543410541"><a href="https://docs.otc.t-systems.com/identity-access-management/umn/getting_started/logging_in_as_a_user.html#iam-01-0032" target="_blank" rel="noopener noreferrer">Log in</a> and verify permissions.<p id="as_07_0102__p14448838131712">Log in to the AS console as the created user, and verify the user's permissions for AS.</p>
<ul id="as_07_0102__ul0221541101419"><li id="as_07_0102__li1522741121412">Choose <strong id="as_07_0102__b4914941151811">Service List</strong> &gt; <strong id="as_07_0102__b844344514181">Auto Scaling</strong>. Then, click <strong id="as_07_0102__b259414492014">Create AS Group</strong> on the AS console. If a message appears indicating that you have insufficient permissions to perform the operation, the <strong id="as_07_0102__b122612222115">AutoScaling ReadOnlyAccess</strong> policy has already taken effect.</li><li id="as_07_0102__li12221641131415">Choose any other service in the <strong id="as_07_0102__b973264172114">Service List</strong>. If a message appears indicating that you have insufficient permissions to access the service, the <strong id="as_07_0102__b196051555182117">AutoScaling ReadOnlyAccess</strong> policy has already taken effect.</li></ul>
</li></ol>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="as_07_0100.html">Permissions Management</a></div>
</div>
</div>
View Git Blame Copy Permalink