vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/iam/umn/iam_01_0030.html
Wei, Hongmin 04bff7c7a8 IAM 2.6 UMN Version 
Reviewed-by: Kabai, Zoltán Gábor <zoltan-gabor.kabai@t-systems.com>
Co-authored-by: Wei, Hongmin <weihongmin1@huawei.com>
Co-committed-by: Wei, Hongmin <weihongmin1@huawei.com>
2023-08-03 03:29:44 +00:00

18 lines
4.4 KiB
HTML
Raw Blame History

<a name="iam_01_0030"></a><a name="iam_01_0030"></a>
<h1 class="topictitle1">Creating a User Group and Assigning Permissions</h1>
<div id="body8662426"><p id="iam_01_0030__p45348454101227">As a security administrator, you can create user groups and grant them permissions.</p>
<div class="section" id="iam_01_0030__s9fbc728347f3412e9eece3a8bcd322dd"><h4 class="sectiontitle">Procedure</h4><ol id="iam_01_0030__o6ce807f5f5874b1b91d7b259e6c8f7fe"><li id="iam_01_0030__l77e06b3545d94d6ab7947723329a49f4"><span>Choose <span class="menucascade" id="iam_01_0030__menucascade157465065015936"><b><span class="uicontrol" id="iam_01_0030__uicontrol28297739115936">Management &amp; Deployment</span></b> &gt; <b><span class="uicontrol" id="iam_01_0030__uicontrol34212982515942">Identity and Access Management</span></b></span>.</span></li><li id="iam_01_0030__l6bdcc18c65034e5d822c23312ace4d6c"><span>In the navigation pane, choose <strong id="iam_01_0030__b16130451">User Groups</strong>.</span></li><li id="iam_01_0030__lbf179c35bf344bd6880e02f7987e3646"><span>On the <strong id="iam_01_0030__en-us_topic_0046611269_b2385397092151">User Groups</strong> page, click <strong id="iam_01_0030__en-us_topic_0046611269_b362570492353">Create User Group</strong>.</span></li><li id="iam_01_0030__lc5c9922fb20841fab6f29ae09468afcc"><span>Enter a user group name.</span></li><li id="iam_01_0030__l4a950d0c978c49f2ba0552f9ecec9339"><span>(Optional) Enter a description for the user group.</span><p><div class="note" id="iam_01_0030__nb32882fa99194d7f83d971098df068e6"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="iam_01_0030__en-us_topic_0111879498_p348815281144">To enable users to directly view their permissions, set a description for the user group. For example, if you assign the <strong id="iam_01_0030__b13738591249">Security Administrator</strong> role to a user group, you can set any description in the <strong id="iam_01_0030__b6784591447">Description</strong> text box. For example: <strong id="iam_01_0030__b14793596415">Security Administrator: Permissions for creating, deleting, and modifying users as well as granting permissions to users.</strong> For details about the permissions for all cloud services, see <a href="https://docs.otc.t-systems.com/permissions/index.html" target="_blank" rel="noopener noreferrer">Permission Description</a>.</p>
</div></div>
</p></li><li id="iam_01_0030__lb24e36a0bdae42dba9d4aecca47a38b6"><span>Click <span class="uicontrol" id="iam_01_0030__uicontrol18639161555814"><b>OK</b></span>.</span><p><p id="iam_01_0030__a9a41309fe18944f7b258dbbc53f7560a">The user group is displayed in the user group list.</p>
</p></li><li id="iam_01_0030__en-us_topic_0111879498_li2918054318"><span>In the row containing the user group, click <strong id="iam_01_0030__b212411137182">Manage Permissions</strong>.</span></li><li id="iam_01_0030__li47981711141315"><span>On the <strong id="iam_01_0030__b1081025610202">Permissions</strong> tab page, click <strong id="iam_01_0030__b981135615209">Assign Permissions</strong> above the permission list.</span></li><li id="iam_01_0030__li82338188252"><span>Specify the authorization scope. If you select <strong id="iam_01_0030__b1443915142114">Region-specific projects</strong>, select one or more projects in the drop-down list.</span><p><ul id="iam_01_0030__ul127934246522"><li id="iam_01_0030__li779313242525"><strong id="iam_01_0030__b02541147292">Global service project</strong>: Services deployed without specifying physical regions are called global services, such as Object Storage Service (OBS), and Tag Management Service (TMS). Permissions for these services must be assigned in the global service project.</li><li id="iam_01_0030__li334132620527"><strong id="iam_01_0030__b1365885413213">Region-specific projects</strong>: Services deployed in specific regions are called project-level services. Permissions for these services need to be assigned in region-specific projects and take effect only for the corresponding regions. If you want the permissions to take effect for all regions, grant them in all these regions.</li></ul>
</p></li><li id="iam_01_0030__li1559103315530"><span>Select policies and click <strong id="iam_01_0030__b1952921411221">OK</strong>.</span></li></ol>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="iam_01_0027.html">Getting Started</a></div>
</div>
</div>
View Git Blame Copy Permalink