Shulou(Shulou.com)06/02 Report--

This article will explain in detail how to implement the authentication rules on access control RAM authorized access to ECS instances and API. The content of the article is of high quality, so the editor will share it for you as a reference. I hope you will have some understanding of the relevant knowledge after reading this article.

The content of this article is about how to use access control RAM authorization and access ECS instances, there is a certain reference value, friends in need can refer to, hope to help you.

Authentication rules

By default, you can use ECS API to fully manipulate the ECS resources you create. However, when a sub-account is created, it does not have the permission to manipulate the resources of the main account, or when accessing ECS from other services, it will involve operation authorization. So before you can manipulate some ECS resources with permission control, you need the resource owner to authorize the target resource and the target API behavior permissions. If you do not need cross-account authorization and access to ECS instance resources, you can skip this section.

Before you learn how to use access control RAM to authorize and access ECS instances, make sure you have read the RAM product documentation and API documentation.

When other accounts access the ECS resources of the main account through ECS API, we first initiate a permission check to RAM to ensure that the resource owner does grant the relevant permissions to the caller. Different ECS API will determine the permissions of which resources need to be checked based on the resources involved and the API semantics. Specifically, the authentication rules of some API are shown in the following table.

This is the end of the implementation of the authentication rules for access control RAM authorizing access to ECS instances and API. I hope the above content can be helpful to everyone and learn more knowledge. If you think the article is good, you can share it for more people to see.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.