vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/tms/umn/tms_04_0002.html
Wei, Hongmin b9f5622cca TMS UMN 0207 Version 
Reviewed-by: Rumpler, Mihály <mihaly.rumpler@t-systems.com>
Co-authored-by: Wei, Hongmin <weihongmin1@huawei.com>
Co-committed-by: Wei, Hongmin <weihongmin1@huawei.com>
2024-04-26 10:27:19 +00:00

23 lines
4.5 KiB
HTML
Raw Blame History

<a name="tms_04_0002"></a><a name="tms_04_0002"></a>
<h1 class="topictitle1">Creating a User and Granting Permissions</h1>
<div id="body1559032253789"><p id="tms_04_0002__p8232511121319">This section describes how to use <a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0026.html" target="_blank" rel="noopener noreferrer">IAM</a> to implement fine-grained permissions control for your TMS resources. With IAM, you can:</p>
<ul id="tms_04_0002__ul7233101171310"><li id="tms_04_0002__li102331411131311">Create IAM users for employees based on your organizational structure. Each IAM user has their own security credentials for accessing TMS resources.</li><li id="tms_04_0002__li9233171112135">Grant users only the permissions required to perform a given task based on their job responsibilities.</li><li id="tms_04_0002__li32331011151310">Entrust an account or a cloud service to perform operations for your TMS resources.</li></ul>
<p id="tms_04_0002__p2233161113130">If your account does not need individual IAM users, skip this section.</p>
<p id="tms_04_0002__p08195915312"><a href="#tms_04_0002__fig890010150810">Figure 1</a> shows the process flow for granting permissions.</p>
<div class="section" id="tms_04_0002__section11406145543717"><h4 class="sectiontitle">Prerequisites</h4><p id="tms_04_0002__p4530185320476">Before granting permissions, learn about the TMS permissions and select the permissions as required. For details about the system-defined permissions supported by TMS, see <a href="tms_01_0009.html#tms_01_0009__section1814075113611">TMS Permissions</a>. To grant permissions for other services, learn about all <a href="https://docs.otc.t-systems.com/permissions/index.html" target="_blank" rel="noopener noreferrer">permissions</a>.</p>
</div>
<div class="section" id="tms_04_0002__section1239239103819"><h4 class="sectiontitle">Flowchart</h4><div class="fignone" id="tms_04_0002__fig890010150810"><a name="tms_04_0002__fig890010150810"></a><a name="fig890010150810"></a><span class="figcap"><b>Figure 1 </b>Granting TMS permissions</span><br><span><img id="tms_04_0002__image19901815986" src="en-us_image_0000001700714200.png"></span></div>
<ol id="tms_04_0002__ol196331133917"><li id="tms_04_0002__li563317113393">On the IAM console, <a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0030.html" target="_blank" rel="noopener noreferrer">create a user group and assigning permissions</a>. Here, TMS ReadOnlyAccess permissions are used as an example.</li><li id="tms_04_0002__li1763316116395"><p id="tms_04_0002__li1763316116395p0"><a name="tms_04_0002__li1763316116395"></a><a name="li1763316116395"></a><a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0031.html" target="_blank" rel="noopener noreferrer">Create an IAM user and add it to the created user group</a>.</p>
</li><li id="tms_04_0002__li1063317123910"><a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0032.html" target="_blank" rel="noopener noreferrer">Log in</a> and verify permissions.<p id="tms_04_0002__p16271336392">The created user logs in to the console and verifies permissions as described below:</p>
<ul id="tms_04_0002__ul12744341214"><li id="tms_04_0002__tms_04_0006_en-us_topic_0000001489537442_li205729227246">Choose <strong id="tms_04_0002__tms_04_0006_b753188115114">Service List</strong> &gt; <strong id="tms_04_0002__tms_04_0006_b85314818510">Tag Management Service</strong>. In the navigation pane on the left, click <strong id="tms_04_0002__tms_04_0006_b253117815113">Predefined Tags</strong>. In the upper right corner of the displayed page, click <strong id="tms_04_0002__tms_04_0006_b1953113885119">Create Tag</strong>. If a message appears indicating that you have insufficient permissions to perform the operation, and if you can view existing predefined tags in the <strong id="tms_04_0002__tms_04_0006_b191461612103113">Predefined Tags</strong> page, the <strong id="tms_04_0002__tms_04_0006_b1953148155115">TMS ReadOnlyAccess</strong> policy is in effect.</li><li id="tms_04_0002__tms_04_0006_en-us_topic_0000001489537442_li1857212212418">Choose another service from <strong id="tms_04_0002__tms_04_0006_b9293111519351">Service List</strong>. If a message appears indicating that you have insufficient permissions to access the service, the <strong id="tms_04_0002__tms_04_0006_b9498118174019">TMS ReadOnlyAccess</strong> policy is in effect.</li></ul>
</li></ol>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="tms_04_0000.html">Permissions Management</a></div>
</div>
</div>
View Git Blame Copy Permalink