Permissions

You need an account on the management console to create, query, and delete DIS streams, and you need an Access Key ID/Secret Access Key (AK/SK) file to push, pull, and dump data.

For details about how to perform operations on IAM, see IAM User Guide.

For details about DIS permissions, see Table 1 and Permissions.

Table 1 Permission list

Node Name

Permission Name

Managed Cloud Resource

Description

How to Assign Permissions

Base

Tenant Administrator

All services

Users have permission to operate all cloud resources owned by an enterprise.

Permission parameter settings:

Region: set to the region to which your cloud resources belong. Project: set to the project to which your cloud resources belong. Policy: set to Tenant Administrator.

DIS

DIS Administrator

DIS

Users have permissions to perform the following operations:

  • Create, delete, modify, and query DIS streams

  • Create, delete, modify, and query dump tasks

  • Upload and download data through a stream

  • Query stream monitoring metrics

Permission parameter settings:

  • Region: set to the region to which DIS streams belong.

  • Project: set to the project to which DIS streams belong.

  • Policy: set to DIS Administrator.

Assign different permissions based on the destination to which data of DIS streams will be dumped.

  • To create DIS streams capable of dumping data to OBS and ensure that the users have permissions to use both DIS and OBS.

  • Parameter settings required for using OBS:

    Region: set to Global service.

    Project: set to OBS.

    Policy: set to Tenant Administrator.

last updated: 2024-11-13 13:37 UTC - commit: cb0d23748c0d1bd937a885c8418feab41d40bbff