vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/obs/umn/obs_faq_0042.html
zhangyue b55201d729 OBS UMN DOC 
Reviewed-by: Sabelnikov, Dmitriy <dmitriy.sabelnikov@t-systems.com>
Co-authored-by: zhangyue <zhangyue164@huawei.com>
Co-committed-by: zhangyue <zhangyue164@huawei.com>
2024-03-18 15:39:30 +00:00

19 lines
2.3 KiB
HTML
Raw Blame History

<a name="obs_faq_0042"></a><a name="obs_faq_0042"></a>
<h1 class="topictitle1">How Can I Control Access to OBS?</h1>
<div id="body8662426"><p id="obs_faq_0042__a81f7b50c5eef4b7580317f8968edfcfe">You can use the following mechanisms to control access to OBS. </p>
<ul id="obs_faq_0042__u4f0a70c91d714cad89c9ae4a3fb177c3"><li id="obs_faq_0042__le43913488680468e86a26bb814fc667d"><span id="obs_faq_0042__ph9419171385810">IAM policies</span><p id="obs_faq_0042__p179610363267"><span id="obs_faq_0042__ph146301221911">IAM policies</span> define the actions that can be performed on your cloud resources, specifying what actions are allowed or denied.</p>
<p id="obs_faq_0042__p71403100382"><span id="obs_faq_0042__ph19572356162711">IAM policies</span> can be used to grant access to various IAM users under the same parent account.</p>
<p id="obs_faq_0042__p1589045952619">The process is as follows:</p>
<ol id="obs_faq_0042__ol175541830182714"><li id="obs_faq_0042__li555417306271">Create a user group and select an IAM permission set for it.</li><li id="obs_faq_0042__li11931332182714">Create an IAM user and add it to the user group, and it will inherit the permissions of the user group you added it to.</li></ol>
</li><li id="obs_faq_0042__li15401113655110">Bucket policies<p id="obs_faq_0042__p111901444142712"><a name="obs_faq_0042__li15401113655110"></a><a name="li15401113655110"></a>A bucket policy applies to the configured OBS bucket and all the objects in the bucket. An OBS bucket owner can use a bucket policy to grant permissions on buckets and objects in the buckets to IAM users or other accounts.</p>
</li><li id="obs_faq_0042__l291122c492704348a603cee9b2ec30cf">Access Control List (ACL)<p id="obs_faq_0042__p1263910220284"><a name="obs_faq_0042__l291122c492704348a603cee9b2ec30cf"></a><a name="l291122c492704348a603cee9b2ec30cf"></a>ACLs control read and write permissions for accounts. ACL control is not as fine-grained as bucket policies and <span id="obs_faq_0042__ph454915011523">IAM policies</span>, so <span id="obs_faq_0042__ph3549125025216">IAM policies</span> and bucket policies are recommended instead.</p>
</li></ul>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="obs_faq_1100.html">Access Control</a></div>
</div>
</div>
View Git Blame Copy Permalink