yexinru/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
Files
8af0f653c62826e99afeb45bbd2fb0ad702f0fce
doc-exports/docs/iam/umn/en-us_topic_0046611303.html
weihongmin1 8af0f653c6 IAM UMN 25.9.0 Version 
Reviewed-by: Rogal, Marcel <mrogal@noreply.gitea.eco.tsi-dev.otc-service.com>
Co-authored-by: weihongmin1 <weihongmin1@huawei.com>
Co-committed-by: weihongmin1 <weihongmin1@huawei.com>
2026-03-12 13:14:16 +00:00

121 lines
15 KiB
HTML
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<a name="en-us_topic_0046611303"></a><a name="en-us_topic_0046611303"></a>
<h1 class="topictitle1">Creating a User</h1>
<div id="body54402144"><p id="en-us_topic_0046611303__p1824547710154">If you need to share resources in your account to other users, you can create users by using the console or by calling an API, and set security credentials and required permissions for the users. The users can then access the cloud platform through the management console or by calling APIs.</p>
<div class="section" id="en-us_topic_0046611303__section4493316"><h4 class="sectiontitle">Procedure</h4><ol id="en-us_topic_0046611303__ol47528147"><li id="en-us_topic_0046611303__li24574685"><span>In the navigation pane, choose <span class="uicontrol" id="en-us_topic_0046611303__uicontrol1983571015498"><b>Users</b></span>.</span></li><li id="en-us_topic_0046611303__li19845579"><span>On the <strong id="en-us_topic_0046611303__en-us_topic_0046611303_b499116851143650">Users</strong> page, click <strong id="en-us_topic_0046611303__en-us_topic_0046611303_b64132446143650">Create User</strong>.</span></li><li id="en-us_topic_0046611303__li34423699191838"><span>Specify the user information on the <strong id="en-us_topic_0046611303__b1612764075117">Create User</strong> page. To create more users, click <strong id="en-us_topic_0046611303__b17011641135118">Add User</strong>. You can create a maximum of 10 users at a time.</span><p>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0046611303__table2085713152213" frame="border" border="1" rules="all"><thead align="left"><tr id="en-us_topic_0046611303__row1585971132215"><th align="left" class="cellrowborder" valign="top" width="7.870000000000001%" id="mcps1.3.2.2.3.2.1.1.3.1.1"><p id="en-us_topic_0046611303__p49241120132516">Parameter</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="92.13%" id="mcps1.3.2.2.3.2.1.1.3.1.2"><p id="en-us_topic_0046611303__p1490342011259">Description</p>
</th>
</tr>
</thead>
<tbody><tr id="en-us_topic_0046611303__row148161516192520"><td class="cellrowborder" valign="top" width="7.870000000000001%" headers="mcps1.3.2.2.3.2.1.1.3.1.1 "><p id="en-us_topic_0046611303__p1185913111223"><span class="keyword" id="en-us_topic_0046611303__keyword102868375216">Username</span></p>
</td>
<td class="cellrowborder" valign="top" width="92.13%" headers="mcps1.3.2.2.3.2.1.1.3.1.2 "><p id="en-us_topic_0046611303__p2085913117229">Username that will be used to log in to the cloud platform. This field is required.</p>
</td>
</tr>
<tr id="en-us_topic_0046611303__row138598110225"><td class="cellrowborder" valign="top" width="7.870000000000001%" headers="mcps1.3.2.2.3.2.1.1.3.1.1 "><p id="en-us_topic_0046611303__p1185911132218">Email Address</p>
</td>
<td class="cellrowborder" valign="top" width="92.13%" headers="mcps1.3.2.2.3.2.1.1.3.1.2 "><p id="en-us_topic_0046611303__p1085915132215">Email address of the user that can be used as a login credential. Users can bind an email address after they are created. This field is required if you have specified <strong id="en-us_topic_0046611303__b17187163595219">Set by user</strong> as the access type.</p>
</td>
</tr>
<tr id="en-us_topic_0046611303__row58605162217"><td class="cellrowborder" valign="top" width="7.870000000000001%" headers="mcps1.3.2.2.3.2.1.1.3.1.1 "><p id="en-us_topic_0046611303__p178600116224">Mobile Number</p>
</td>
<td class="cellrowborder" valign="top" width="92.13%" headers="mcps1.3.2.2.3.2.1.1.3.1.2 "><p id="en-us_topic_0046611303__p386020114221">Mobile phone number of the user that can be used as a login credential. Users can bind a mobile number after they are created. This field is optional.</p>
</td>
</tr>
<tr id="en-us_topic_0046611303__row7386153642217"><td class="cellrowborder" valign="top" width="7.870000000000001%" headers="mcps1.3.2.2.3.2.1.1.3.1.1 "><p id="en-us_topic_0046611303__p63874367227">Description</p>
</td>
<td class="cellrowborder" valign="top" width="92.13%" headers="mcps1.3.2.2.3.2.1.1.3.1.2 "><p id="en-us_topic_0046611303__p17387193652218">Additional information about the user. This field is optional.</p>
</td>
</tr>
<tr id="en-us_topic_0046611303__row1676045195710"><td class="cellrowborder" valign="top" width="7.870000000000001%" headers="mcps1.3.2.2.3.2.1.1.3.1.1 "><p id="en-us_topic_0046611303__p134221241605">External Identity ID</p>
</td>
<td class="cellrowborder" valign="top" width="92.13%" headers="mcps1.3.2.2.3.2.1.1.3.1.2 "><p id="en-us_topic_0046611303__p5304118115910">Identity of an enterprise user in IAM user SSO.</p>
<p id="en-us_topic_0046611303__p6241633122718">This parameter (no more than 128 characters) is mandatory for IAM user SSO. For details, see <a href="iam_08_0253.html">IAM User SSO via SAML</a>.</p>
</td>
</tr>
</tbody>
</table>
</div>
</p></li><li id="en-us_topic_0046611303__li771675910715"><span>Select an access type and click <strong id="en-us_topic_0046611303__b77441676539">Next</strong>.</span><p>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="en-us_topic_0046611303__table1777851811233" frame="border" border="1" rules="all"><thead align="left"><tr id="en-us_topic_0046611303__row8779161802313"><th align="left" class="cellrowborder" valign="top" id="mcps1.3.2.2.4.2.1.1.5.1.1"><p id="en-us_topic_0046611303__p9262183452512">Access Type</p>
</th>
<th align="left" class="cellrowborder" colspan="2" valign="top" id="mcps1.3.2.2.4.2.1.1.5.1.2"><p id="en-us_topic_0046611303__p11261134192512">Configuration</p>
</th>
<th align="left" class="cellrowborder" valign="top" id="mcps1.3.2.2.4.2.1.1.5.1.3"><p id="en-us_topic_0046611303__p8233173420253">Description</p>
</th>
</tr>
</thead>
<tbody><tr id="en-us_topic_0046611303__row177991813236"><td class="cellrowborder" valign="top" width="16.03839616038396%" headers="mcps1.3.2.2.4.2.1.1.5.1.1 "><p id="en-us_topic_0046611303__p14779141832318">Programmatic access</p>
</td>
<td class="cellrowborder" valign="top" width="11.848815118488151%" headers="mcps1.3.2.2.4.2.1.1.5.1.2 "><p id="en-us_topic_0046611303__p7779181822310">--</p>
</td>
<td class="cellrowborder" valign="top" width="12.248775122487752%" headers="mcps1.3.2.2.4.2.1.1.5.1.2 "><p id="en-us_topic_0046611303__p15779121852314">--</p>
</td>
<td class="cellrowborder" valign="top" width="59.86401359864014%" headers="mcps1.3.2.2.4.2.1.1.5.1.3 "><p id="en-us_topic_0046611303__p6812103102416">If you select this option, after the user is created, you can download the access key (AK/SK) generated for the user. The user can use the access key to access the cloud platform through APIs. Each user can have a maximum of two access keys.</p>
</td>
</tr>
<tr id="en-us_topic_0046611303__row952694019209"><td class="cellrowborder" rowspan="5" valign="top" width="16.03839616038396%" headers="mcps1.3.2.2.4.2.1.1.5.1.1 "><p id="en-us_topic_0046611303__p043251517216">Management console access</p>
<p id="en-us_topic_0046611303__p195081327132112"></p>
</td>
<td class="cellrowborder" rowspan="3" valign="top" width="11.848815118488151%" headers="mcps1.3.2.2.4.2.1.1.5.1.2 "><p id="en-us_topic_0046611303__p159041850172111">Console Password</p>
<p id="en-us_topic_0046611303__p17904350162118"></p>
</td>
<td class="cellrowborder" valign="top" width="12.248775122487752%" headers="mcps1.3.2.2.4.2.1.1.5.1.2 "><p id="en-us_topic_0046611303__p235110595212">Set by user</p>
</td>
<td class="cellrowborder" valign="top" width="59.86401359864014%" headers="mcps1.3.2.2.4.2.1.1.5.1.3 "><p id="en-us_topic_0046611303__p16604125616917">If you are the administrator setting the password for the user, select this option. The user can set a password by clicking on the one-time login URL sent over email.</p>
<p id="en-us_topic_0046611303__p42391524917">The URL is valid for 2 days. Remind the user to log in and set a password before the URL expires.</p>
</td>
</tr>
<tr id="en-us_topic_0046611303__row1088319122116"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.2.1.1.5.1.1 "><p id="en-us_topic_0046611303__p18351135914212">Automatically generated</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.2.1.1.5.1.2 "><p id="en-us_topic_0046611303__p20351105922118">The system will generate a random password after you click <strong id="en-us_topic_0046611303__b1652720475566">OK</strong>. This option is available only when you create a single user.</p>
</td>
</tr>
<tr id="en-us_topic_0046611303__row12985998218"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.2.1.1.5.1.1 "><p id="en-us_topic_0046611303__p153512593212">Set now</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.2.1.1.5.1.2 "><p id="en-us_topic_0046611303__p143511559112117">Select this option if you are the user. Then, set a password for login.</p>
<div class="note" id="en-us_topic_0046611303__note732163017136"><span class="notetitle"> NOTE: </span><div class="notebody"><div class="p" id="en-us_topic_0046611303__p17471521171317">The password must meet the following requirements:<ul id="en-us_topic_0046611303__ul124714216134"><li id="en-us_topic_0046611303__li1647112131313">Must contain 6 to 32 characters.</li><li id="en-us_topic_0046611303__li13545131125410">Must contain at least two types of the following: uppercase letters, lowercase letters, digits, and special characters (~`!?,.:;-_'"(){}[]/&lt;&gt;@#$%^&amp;*+|\= and spaces).</li><li id="en-us_topic_0046611303__li947192110139">Cannot be the username or the username spelled backwards. For example, if the username is <strong id="en-us_topic_0046611303__b9902181755720">A12345</strong>, the password cannot be <strong id="en-us_topic_0046611303__b4908191745717">A12345</strong>, <strong id="en-us_topic_0046611303__b189091173573">a12345</strong>, <strong id="en-us_topic_0046611303__b0910317105717">54321A</strong>, or <strong id="en-us_topic_0046611303__b1191111175571">54321a</strong>.</li><li id="en-us_topic_0046611303__li24713215132">Cannot contain the user's mobile number or email address.</li></ul>
</div>
</div></div>
</td>
</tr>
<tr id="en-us_topic_0046611303__row3985159132118"><td class="cellrowborder" rowspan="2" valign="top" headers="mcps1.3.2.2.4.2.1.1.5.1.1 "><p id="en-us_topic_0046611303__p1190595010214">Login Protection</p>
<p id="en-us_topic_0046611303__p119051650162120"></p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.2.1.1.5.1.2 "><p id="en-us_topic_0046611303__p93511359132115">Enable</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.2.1.1.5.1.2 "><p id="en-us_topic_0046611303__p13351115932111">If login protection is enabled, the user will need to enter a verification code in addition to the username and password during login. Enable this function for account security.</p>
<p id="en-us_topic_0046611303__p1635125932111">You can choose from SMS-, email-, and virtual MFAbased login verification.</p>
</td>
</tr>
<tr id="en-us_topic_0046611303__row8508102722111"><td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.2.1.1.5.1.1 "><p id="en-us_topic_0046611303__p1435115593217">Disable</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.2.2.4.2.1.1.5.1.2 "><p id="en-us_topic_0046611303__p18351959142119">For this example, disable login protection.</p>
</td>
</tr>
</tbody>
</table>
</div>
<div class="note" id="en-us_topic_0046611303__note13678131620345"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="en-us_topic_0046611303__ul106131224588"><li id="en-us_topic_0046611303__li12553124511814">For security purposes, select only one access type for each user.<ul id="en-us_topic_0046611303__ul095841211910"><li id="en-us_topic_0046611303__li016681141913">Programmatic access: Users can access cloud services using development tools (including APIs, CLI, and SDKs) that support key authentication. This access type is recommended for developers.</li><li id="en-us_topic_0046611303__li7949434111919">Management console access: Users can log in to the management console using their own usernames and passwords.</li></ul>
</li><li id="en-us_topic_0046611303__li478762443513">Users can log in to the cloud platform using the username, mobile number, or email address.</li><li id="en-us_topic_0046611303__li1158571103311">If users forget their password, they can reset it through email address or mobile number verification. If no email address or mobile number has been bound to users, users need to contact the administrator to reset their password.</li></ul>
</div></div>
</p></li><li id="en-us_topic_0046611303__li1219835071316"><span>(Optional) Click <strong id="en-us_topic_0046611303__b5621421151017">Next</strong> and add the user to one or more user groups.</span><p><ul id="en-us_topic_0046611303__ul13163164116"><li id="en-us_topic_0046611303__li816374116">The user will inherit the permissions assigned to the user groups to which the user belongs.</li><li id="en-us_topic_0046611303__li1516364612">You can also create new groups as required.</li></ul>
<div class="note" id="en-us_topic_0046611303__note514453815218"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><ul id="en-us_topic_0046611303__ul19859123954411"><li id="en-us_topic_0046611303__li1420014994411">If a user will be an administrator, add the user to the default group <strong id="en-us_topic_0046611303__b1777011325446">admin</strong>.</li><li id="en-us_topic_0046611303__li1574502831212">You can enter a keyword to quickly find the target user group.</li><li id="en-us_topic_0046611303__li38601839144410">You can add a user to multiple user groups.</li></ul>
</div></div>
</p></li><li id="en-us_topic_0046611303__li5861111121219"><span>Click <strong id="en-us_topic_0046611303__b7547115951011">Create</strong>.</span><p><div class="note" id="en-us_topic_0046611303__note12420195431414"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="en-us_topic_0046611303__p1682811181511">If you have specified the access type as <strong id="en-us_topic_0046611303__b1853420396113">Programmatic access</strong>, download the access key on the <strong id="en-us_topic_0046611303__b1353453913111">Finish</strong> page.</p>
</div></div>
</p></li></ol>
<p id="en-us_topic_0046611303__p1995652217268">2</p>
</div>
<div class="section" id="en-us_topic_0046611303__section5017677711856"><h4 class="sectiontitle">Related Operations</h4><ul id="en-us_topic_0046611303__ul3778710211856"><li id="en-us_topic_0046611303__li171511617371">View and modify information about the user, including the user status, email address, mobile number, user groups, and logs.</li><li id="en-us_topic_0046611303__li5579358816642">In the user list, click <strong id="en-us_topic_0046611303__b842352706155642">Delete</strong> in the row that contains the user you want to delete and click <strong id="en-us_topic_0046611303__b54531221183715">Yes</strong>.</li></ul>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="iam_01_06.html">IAM Users</a></div>
</div>
</div>
View Git Blame Copy Permalink