forked from docs/doc-exports
Liu, Siying
df92dd687a
Reviewed-by: Mützel, Andrea <andrea.muetzel@t-systems.com> Co-authored-by: Liu, Siying <liusiying@noreply.gitea.eco.tsi-dev.otc-service.com> Co-committed-by: Liu, Siying <liusiying@noreply.gitea.eco.tsi-dev.otc-service.com>
22 lines
3.6 KiB
HTML
22 lines
3.6 KiB
HTML
<a name="cts_031_002"></a><a name="cts_031_002"></a>
|
|
|
|
<h1 class="topictitle1">Creating a User and Granting Permissions</h1>
|
|
<div id="body0000001474974246"><p id="cts_031_002__en-us_topic_0207902851_p188381303204">For fine-grained management of CTS permissions, you can use <a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0026.html" target="_blank" rel="noopener noreferrer">Identity and Access Management (IAM)</a>. With IAM, you can:</p>
|
|
<ul id="cts_031_002__en-us_topic_0207902851_ul583810010208"><li id="cts_031_002__en-us_topic_0207902851_li58386082011">Create IAM users for employees based on your enterprise's organizational structure. Each IAM user will have their own security credentials for accessing CTS resources.</li><li id="cts_031_002__en-us_topic_0207902851_li6838110132018">Manage permissions on a principle of least permissions (PoLP) basis.</li><li id="cts_031_002__en-us_topic_0207902851_li483815013208">Entrust an account or cloud service to perform efficient O&M on your CTS resources.</li></ul>
|
|
<p id="cts_031_002__en-us_topic_0207902851_p118381405208">If your account does not require individual IAM users, skip this section.</p>
|
|
<div class="section" id="cts_031_002__en-us_topic_0207902851_section16528787219"><h4 class="sectiontitle">Prerequisites</h4><p id="cts_031_002__en-us_topic_0207902851_p99333127215">Learn about the permissions (see <a href="https://docs.otc.t-systems.com/permissions/index.html" target="_blank" rel="noopener noreferrer">Permissions</a>) supported by CTS and choose policies or roles according to your requirements.</p>
|
|
</div>
|
|
<div class="section" id="cts_031_002__en-us_topic_0207902851_section17188122816365"><h4 class="sectiontitle">Process Flow</h4><div class="fignone" id="cts_031_002__en-us_topic_0207902851_fig33331434153117"><span class="figcap"><b>Figure 1 </b>Process of granting CTS permissions</span><br><span><img class="eddx" id="cts_031_002__en-us_topic_0207902851_image133373410315" src="en-us_image_0000001525454037.png"></span></div>
|
|
<ol id="cts_031_002__en-us_topic_0207902851_ol896174893315"><li id="cts_031_002__en-us_topic_0207902851_li10961848173315"><a name="cts_031_002__en-us_topic_0207902851_li10961848173315"></a><a name="en-us_topic_0207902851_li10961848173315"></a><a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0030.html" target="_blank" rel="noopener noreferrer">Create a user group and assign permissions</a>.<p id="cts_031_002__en-us_topic_0207902851_p8961154813332">Create a user group on the IAM console, and attach the <strong id="cts_031_002__b86996350032942">CTS Administrator</strong> policy to the group.</p>
|
|
</li><li id="cts_031_002__en-us_topic_0207902851_li6961134814332"><a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0031.html" target="_blank" rel="noopener noreferrer">Create a user and add the user to the user group</a>.<p id="cts_031_002__en-us_topic_0207902851_p896144817336">Create a user on the IAM console and add the user to the user group created in <a href="#cts_031_002__en-us_topic_0207902851_li10961848173315">1</a>.</p>
|
|
</li><li id="cts_031_002__en-us_topic_0207902851_li1996111483331"><a href="https://docs.otc.t-systems.com/usermanual/iam/iam_01_0032.html" target="_blank" rel="noopener noreferrer">Log in as the created user</a> and verify permissions.<p id="cts_031_002__en-us_topic_0207902851_p119612048193317">Log in to the console by using the created user and verify permissions in the authorized region.</p>
|
|
</li></ol>
|
|
</div>
|
|
</div>
|
|
<div>
|
|
<div class="familylinks">
|
|
<div class="parentlink"><strong>Parent topic:</strong> <a href="cts_031_001.html">Permissions Management</a></div>
|
|
</div>
|
|
</div>
|
|
|