forked from docs/doc-exports
Wei, Hongmin
f37f5291ef
Reviewed-by: Hasko, Vladimir <vladimir.hasko@t-systems.com> Co-authored-by: Wei, Hongmin <weihongmin1@huawei.com> Co-committed-by: Wei, Hongmin <weihongmin1@huawei.com>
488 lines
19 KiB
JSON
488 lines
19 KiB
JSON
[
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"Service Overview",
|
||
"uri":"iam_01_0021.html",
|
||
"doc_type":"",
|
||
"p_code":"",
|
||
"code":"1"
|
||
},
|
||
{
|
||
"desc":"Identity and Access Management (IAM) provides identity authentication, permissions management, and access control. With IAM, you can create users for individuals, systems",
|
||
"product_code":"",
|
||
"title":"What Is IAM?",
|
||
"uri":"iam_01_0026.html",
|
||
"doc_type":"",
|
||
"p_code":"1",
|
||
"code":"2"
|
||
},
|
||
{
|
||
"desc":"IAM provides the following basic functions:Refined permissions managementYou can control user access to different projects and grant different permissions to users for th",
|
||
"product_code":"",
|
||
"title":"IAM Features",
|
||
"uri":"en-us_topic_0046611276.html",
|
||
"doc_type":"",
|
||
"p_code":"1",
|
||
"code":"3"
|
||
},
|
||
{
|
||
"desc":"You can manage users in your account and their security credentials. In addition, you can configure federated identity authentication so that users in other systems can a",
|
||
"product_code":"",
|
||
"title":"Identity Management",
|
||
"uri":"iam_01_0023.html",
|
||
"doc_type":"",
|
||
"p_code":"1",
|
||
"code":"4"
|
||
},
|
||
{
|
||
"desc":"You can grant users permissions to access different resources.Plan user groups and grant permissions to each user group.Add a user to a specific user group so that the us",
|
||
"product_code":"",
|
||
"title":"Permissions Management",
|
||
"uri":"iam_01_0024.html",
|
||
"doc_type":"",
|
||
"p_code":"1",
|
||
"code":"5"
|
||
},
|
||
{
|
||
"desc":"To prevent personal data, such as the username, password, and mobile number, from being accessed by unauthorized entities or individuals, IAM encrypts the data before sto",
|
||
"product_code":"",
|
||
"title":"Personal Data Protection Mechanism",
|
||
"uri":"iam_01_0035.html",
|
||
"doc_type":"",
|
||
"p_code":"1",
|
||
"code":"6"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"Getting Started",
|
||
"uri":"iam_01_0027.html",
|
||
"doc_type":"",
|
||
"p_code":"",
|
||
"code":"7"
|
||
},
|
||
{
|
||
"desc":"Your account has full access to your resources. For security purposes, create a security administrator and perform routine management as the security administrator.If a u",
|
||
"product_code":"",
|
||
"title":"Getting Started with IAM",
|
||
"uri":"iam_01_0034.html",
|
||
"doc_type":"",
|
||
"p_code":"7",
|
||
"code":"8"
|
||
},
|
||
{
|
||
"desc":"For security purposes, create a security administrator and manage users in your account as the security administrator.Programmatic access: Users can access cloud services",
|
||
"product_code":"",
|
||
"title":"Creating a Security Administrator",
|
||
"uri":"iam_01_0029.html",
|
||
"doc_type":"",
|
||
"p_code":"7",
|
||
"code":"9"
|
||
},
|
||
{
|
||
"desc":"As a security administrator, you can create user groups and grant them permissions.To enable users to directly view their permissions, set a description for the user grou",
|
||
"product_code":"",
|
||
"title":"Creating a User Group and Assigning Permissions",
|
||
"uri":"iam_01_0030.html",
|
||
"doc_type":"",
|
||
"p_code":"7",
|
||
"code":"10"
|
||
},
|
||
{
|
||
"desc":"As a security administrator, you can create a user and add the user to a user group. The user automatically inherits the permissions of the user group.For security purpos",
|
||
"product_code":"",
|
||
"title":"Creating a User and Adding the User to a User Group",
|
||
"uri":"iam_01_0031.html",
|
||
"doc_type":"",
|
||
"p_code":"7",
|
||
"code":"11"
|
||
},
|
||
{
|
||
"desc":"You can log in to the cloud system as a user and access cloud services based on granted permissions.Verify the information displayed on the Login Verification page during",
|
||
"product_code":"",
|
||
"title":"Logging In as a User",
|
||
"uri":"iam_01_0032.html",
|
||
"doc_type":"",
|
||
"p_code":"7",
|
||
"code":"12"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"User Guide",
|
||
"uri":"iam_01_0040.html",
|
||
"doc_type":"",
|
||
"p_code":"",
|
||
"code":"13"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"Auditing",
|
||
"uri":"iam_01_0011.html",
|
||
"doc_type":"",
|
||
"p_code":"13",
|
||
"code":"14"
|
||
},
|
||
{
|
||
"desc":"Table 1 lists Identity and Access Management (IAM) operations that can be recorded by Cloud Trace Service (CTS).",
|
||
"product_code":"",
|
||
"title":"IAM Operations That Can Be Recorded by CTS",
|
||
"uri":"iam_01_0012.html",
|
||
"doc_type":"",
|
||
"p_code":"14",
|
||
"code":"15"
|
||
},
|
||
{
|
||
"desc":"After you enable CTS, it records key operations performed on IAM. You can view the operation records of the last 7 days on the CTS console.The following filters are avail",
|
||
"product_code":"",
|
||
"title":"Viewing Audit Logs",
|
||
"uri":"iam_01_0013.html",
|
||
"doc_type":"",
|
||
"p_code":"14",
|
||
"code":"16"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"User and User Group Management",
|
||
"uri":"iam_01_06.html",
|
||
"doc_type":"",
|
||
"p_code":"13",
|
||
"code":"17"
|
||
},
|
||
{
|
||
"desc":"As a security administrator, you can grant permissions to a user group and add users to it. The users inherit the permissions of the user group and can access the cloud s",
|
||
"product_code":"",
|
||
"title":"Managing Users and Permissions",
|
||
"uri":"en-us_topic_0079496985.html",
|
||
"doc_type":"",
|
||
"p_code":"17",
|
||
"code":"18"
|
||
},
|
||
{
|
||
"desc":"Projects are used to group and isolate OpenStack resources, including compute, storage, and network resources. A project can be a department or a project team. Resources ",
|
||
"product_code":"",
|
||
"title":"Managing Projects",
|
||
"uri":"en-us_topic_0066738518.html",
|
||
"doc_type":"",
|
||
"p_code":"17",
|
||
"code":"19"
|
||
},
|
||
{
|
||
"desc":"You can plan user groups based on user responsibilities and grant the required permissions to the user groups. Users inherit permissions from the user groups to which the",
|
||
"product_code":"",
|
||
"title":"Creating a User Group",
|
||
"uri":"en-us_topic_0046611269.html",
|
||
"doc_type":"",
|
||
"p_code":"17",
|
||
"code":"20"
|
||
},
|
||
{
|
||
"desc":"If you need to share resources in your account to other users, you can create users by using the console or by calling an API, and set security credentials and required p",
|
||
"product_code":"",
|
||
"title":"Creating a User",
|
||
"uri":"en-us_topic_0046611303.html",
|
||
"doc_type":"",
|
||
"p_code":"17",
|
||
"code":"21"
|
||
},
|
||
{
|
||
"desc":"Resources in different projects or regions are isolated. You can access resources only in the projects or regions for which you have been granted permissions. If you do n",
|
||
"product_code":"",
|
||
"title":"Switching Projects or Regions",
|
||
"uri":"en-us_topic_0079497018.html",
|
||
"doc_type":"",
|
||
"p_code":"17",
|
||
"code":"22"
|
||
},
|
||
{
|
||
"desc":"As an administrator, you can view and modify the basic information, user groups, and logs of each user. In addition, you can change the groups to which a user belongs if ",
|
||
"product_code":"",
|
||
"title":"Viewing and Modifying User Information",
|
||
"uri":"en-us_topic_0046661675.html",
|
||
"doc_type":"",
|
||
"p_code":"17",
|
||
"code":"23"
|
||
},
|
||
{
|
||
"desc":"As a security administrator, you can view and modify the basic information, permissions, and users of a user group. You can modify users' permissions by changing the grou",
|
||
"product_code":"",
|
||
"title":"Viewing and Modifying User Group Information",
|
||
"uri":"en-us_topic_0085605493.html",
|
||
"doc_type":"",
|
||
"p_code":"17",
|
||
"code":"24"
|
||
},
|
||
{
|
||
"desc":"You can modify user permissions using either of the following methods:Change the user groups to which a user belongs on the Modify User page. Choose this method if you wa",
|
||
"product_code":"",
|
||
"title":"Modifying User Permissions",
|
||
"uri":"en-us_topic_0080335069.html",
|
||
"doc_type":"",
|
||
"p_code":"17",
|
||
"code":"25"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"Fine-Grained Policy Management",
|
||
"uri":"iam_01_0015.html",
|
||
"doc_type":"",
|
||
"p_code":"13",
|
||
"code":"26"
|
||
},
|
||
{
|
||
"desc":"A fine-grained policy is a set of permissions that define operations allowed to be performed on specific cloud services. A policy can contain multiple permission sets. Af",
|
||
"product_code":"",
|
||
"title":"Fine-Grained Policies",
|
||
"uri":"iam_01_019.html",
|
||
"doc_type":"",
|
||
"p_code":"26",
|
||
"code":"27"
|
||
},
|
||
{
|
||
"desc":"A fine-grained policy consists of the policy version (the Version field) and statement (the Statement field).Version: Distinguishes between role-based access control (RBA",
|
||
"product_code":"",
|
||
"title":"Policy Syntax",
|
||
"uri":"iam_01_0017.html",
|
||
"doc_type":"",
|
||
"p_code":"26",
|
||
"code":"28"
|
||
},
|
||
{
|
||
"desc":"You can create custom policies to supplement system-defined policies and implement more refined access control.Global services: Select this option if the services to whic",
|
||
"product_code":"",
|
||
"title":"Creating a Custom Policy",
|
||
"uri":"iam_01_0016.html",
|
||
"doc_type":"",
|
||
"p_code":"26",
|
||
"code":"29"
|
||
},
|
||
{
|
||
"desc":"Use the following method to assign permissions of the FullAccess policy to a user but also forbid the user from accessing CTS. Create a custom policy for denying access t",
|
||
"product_code":"",
|
||
"title":"Custom Policy Use Cases",
|
||
"uri":"iam_01_0600.html",
|
||
"doc_type":"",
|
||
"p_code":"26",
|
||
"code":"30"
|
||
},
|
||
{
|
||
"desc":"Users with Security Administrator permissions can configure a login authentication policy, password policy, and ACL to keep your user information and system secure.In the",
|
||
"product_code":"",
|
||
"title":"Account Settings",
|
||
"uri":"en-us_topic_0046611308.html",
|
||
"doc_type":"",
|
||
"p_code":"13",
|
||
"code":"31"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"Agency Management",
|
||
"uri":"en-us_topic_0079496986.html",
|
||
"doc_type":"",
|
||
"p_code":"13",
|
||
"code":"32"
|
||
},
|
||
{
|
||
"desc":"Agency is a trust relationship between a delegating account and a delegated account. By creating an agency, you can grant permissions to another account or cloud service ",
|
||
"product_code":"",
|
||
"title":"Delegating Resource Access to Another Account",
|
||
"uri":"iam_01_0054.html",
|
||
"doc_type":"",
|
||
"p_code":"32",
|
||
"code":"33"
|
||
},
|
||
{
|
||
"desc":"By creating an agency, you can share your resources with another account or a cloud service (such as ECS), or delegate an individual or team to manage your resources. You",
|
||
"product_code":"",
|
||
"title":"Creating an Agency (by a Delegating Party)",
|
||
"uri":"en-us_topic_0046613147.html",
|
||
"doc_type":"",
|
||
"p_code":"32",
|
||
"code":"34"
|
||
},
|
||
{
|
||
"desc":"When a trust relationship is established between another account and your account, you become a delegated party and you can authorize a user to manage resources for the d",
|
||
"product_code":"",
|
||
"title":"Assigning Permissions to a User (by a Delegated Party)",
|
||
"uri":"iam_01_0063.html",
|
||
"doc_type":"",
|
||
"p_code":"32",
|
||
"code":"35"
|
||
},
|
||
{
|
||
"desc":"When an account establishes a trust relationship between itself and your account, you become a delegated party. You and all the users you have authorized can switch to th",
|
||
"product_code":"",
|
||
"title":"Switching Roles (by a Delegated Party)",
|
||
"uri":"en-us_topic_0046613148.html",
|
||
"doc_type":"",
|
||
"p_code":"32",
|
||
"code":"36"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"Federated Identity Authentication",
|
||
"uri":"en-us_topic_0059870089.html",
|
||
"doc_type":"",
|
||
"p_code":"13",
|
||
"code":"37"
|
||
},
|
||
{
|
||
"desc":"If you have an identity authentication system, you do not need to create new users in the service provider system. Instead, you can configure federated identity authentic",
|
||
"product_code":"",
|
||
"title":"Introduction",
|
||
"uri":"en-us_topic_0079620341.html",
|
||
"doc_type":"",
|
||
"p_code":"37",
|
||
"code":"38"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"SAML-based Federated Identity Authentication",
|
||
"uri":"iam_08_0002.html",
|
||
"doc_type":"",
|
||
"p_code":"37",
|
||
"code":"39"
|
||
},
|
||
{
|
||
"desc":"To establish a trust relationship between an enterprise identity provider and the cloud system, upload the metadata file of the cloud system to the identity provider, and",
|
||
"product_code":"",
|
||
"title":"Step 1: Create an Identity Provider",
|
||
"uri":"iam_08_0003.html",
|
||
"doc_type":"",
|
||
"p_code":"39",
|
||
"code":"40"
|
||
},
|
||
{
|
||
"desc":"As the enterprise administrator, you can manage identities and permissions of federated users in the enterprise identity provider. By configuring identity conversion rule",
|
||
"product_code":"",
|
||
"title":"Step 2: Configure Identity Conversion Rules",
|
||
"uri":"iam_08_0004.html",
|
||
"doc_type":"",
|
||
"p_code":"39",
|
||
"code":"41"
|
||
},
|
||
{
|
||
"desc":"Configure the login link of the identity provider in the enterprise management system so that enterprise users can use this link to access the cloud system.An identity pr",
|
||
"product_code":"",
|
||
"title":"Step 3: Configure Login Link in the Enterprise Management System",
|
||
"uri":"iam_08_0005.html",
|
||
"doc_type":"",
|
||
"p_code":"39",
|
||
"code":"42"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"OpenID Connect–based Federated Identity Authentication",
|
||
"uri":"iam_08_0010.html",
|
||
"doc_type":"",
|
||
"p_code":"37",
|
||
"code":"43"
|
||
},
|
||
{
|
||
"desc":"To establish a trust relationship between an enterprise identity provider and the cloud system, create an identity provider and configure authorization information on the",
|
||
"product_code":"",
|
||
"title":"Step 1: Create an Identity Provider",
|
||
"uri":"iam_08_0009.html",
|
||
"doc_type":"",
|
||
"p_code":"43",
|
||
"code":"44"
|
||
},
|
||
{
|
||
"desc":"As the enterprise administrator, you can manage identities and permissions of federated users in the enterprise identity provider. By configuring identity conversion rule",
|
||
"product_code":"",
|
||
"title":"Step 2: Configure Identity Conversion Rules",
|
||
"uri":"iam_08_0008.html",
|
||
"doc_type":"",
|
||
"p_code":"43",
|
||
"code":"45"
|
||
},
|
||
{
|
||
"desc":"Configure the login link of the identity provider in the enterprise management system so that enterprise users can use this link to access the cloud system.An identity pr",
|
||
"product_code":"",
|
||
"title":"Step 3: Configure Login Link in the Enterprise Management System",
|
||
"uri":"iam_08_0007.html",
|
||
"doc_type":"",
|
||
"p_code":"43",
|
||
"code":"46"
|
||
},
|
||
{
|
||
"desc":"An identity conversion rule is a JSON object which can be modified. The following is an example JSON object:[ \n { \n \"remote\": [ \n { \n ",
|
||
"product_code":"",
|
||
"title":"Syntax of Identity Conversion Rules",
|
||
"uri":"en-us_topic_0079620340.html",
|
||
"doc_type":"",
|
||
"p_code":"37",
|
||
"code":"47"
|
||
},
|
||
{
|
||
"desc":"MFA authentication provides an additional layer of protection on top of the username and password. If you enable MFA authentication, users need to enter the username and ",
|
||
"product_code":"",
|
||
"title":"MFA Authentication and Virtual MFA Device",
|
||
"uri":"iam_10_0002.html",
|
||
"doc_type":"",
|
||
"p_code":"13",
|
||
"code":"48"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"FAQs",
|
||
"uri":"iam_01_0000.html",
|
||
"doc_type":"",
|
||
"p_code":"",
|
||
"code":"49"
|
||
},
|
||
{
|
||
"desc":"For account security purposes, you are advised to enable login authentication. After this function is enabled, users need to enter an SMS, MFA, or email verification code",
|
||
"product_code":"",
|
||
"title":"How Do I Enable Login Authentication?",
|
||
"uri":"iam_01_0002.html",
|
||
"doc_type":"",
|
||
"p_code":"49",
|
||
"code":"50"
|
||
},
|
||
{
|
||
"desc":"MFA authentication provides an additional layer of protection on top of the username and password. If MFA–based login authentication is enabled, you will need to enter a ",
|
||
"product_code":"",
|
||
"title":"How Do I Bind a Virtual MFA Device?",
|
||
"uri":"iam_01_0003.html",
|
||
"doc_type":"",
|
||
"p_code":"49",
|
||
"code":"51"
|
||
},
|
||
{
|
||
"desc":"After MFA–based login authentication is enabled, you need to enter an MFA verification code in addition to the username and password when logging in to the console. Open ",
|
||
"product_code":"",
|
||
"title":"How Do I Obtain MFA Verification Codes?",
|
||
"uri":"iam_01_0001.html",
|
||
"doc_type":"",
|
||
"p_code":"49",
|
||
"code":"52"
|
||
},
|
||
{
|
||
"desc":"You can unbind the virtual MFA device as long as the mobile phone used to bind the MFA device is available and the MFA application is still installed on the phone.On the ",
|
||
"product_code":"",
|
||
"title":"How Do I Unbind a Virtual MFA Device?",
|
||
"uri":"iam_01_0004.html",
|
||
"doc_type":"",
|
||
"p_code":"49",
|
||
"code":"53"
|
||
},
|
||
{
|
||
"desc":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
||
"product_code":"",
|
||
"title":"Change History",
|
||
"uri":"en-us_topic_0046611300.html",
|
||
"doc_type":"",
|
||
"p_code":"",
|
||
"code":"54"
|
||
}
|
||
] |