• Identity and Access Management

iam
  1. Help Center
  2. Identity and Access Management
  3. User Guide
  4. User Guide
  5. User and User Group Management
  6. Viewing and Modifying User Information

Viewing and Modifying User Information

Administrators can view and modify the basic information of a user, belonged user groups, and logs generated for the user. They can change the group of a user after the user's responsibilities change, or modify the login credentials of a user if the user's password or access key was forgotten or lost.

Viewing User Information

In the user list, click next to a user to view the detailed user information, including Basic Information, User Groups, and User Logs.

Modifying User Information

Click Modify in the Operation column of the row that contains the target user.

  • Status: A user is enabled by default after being created. You can change the status of a user to Disabled if you do not use it again.
  • Login authentication method
    • Virtual MFA: Change the login authentication mode of a user to virtual MFA only if the user has been bound to an MFA device. After the change, the user must enter virtual MFA verification codes when logging in.
    • SMS: Change the login authentication mode of a user to SMS only if the user has been bound to a mobile number. After the change, the user must enter a mobile verification code when logging in.
    • Email: Change the login authentication mode of a user to SMS only if the user has been bound to an email address. After the change, the user must enter an email verification code when logging in.
  • Email, Mobile Number, and Description
  • Virtual MFA Device: Bind an MFA device to or unbind an MFA device from a user.
  • User Groups: Add a user to or remove it from target user groups.
    NOTE:

    Enter a keyword to quickly find the target user group.

Setting User Credentials

In the user list, click Set Credentials in the Operation column of the row that contains the target user to change its password or manage its access keys.

Credential Type

Generation Method

Description

Application Scenario

Password

Using email

The system will send you a one-time login link through email. You can click this link to log in to the management console and set the password.

Used to reset the API passwords of users who have email addresses bound to their accounts. The user needs to use the password to log in to the management console.

Automatically generated

The system randomly generates a 10-character API password.

NOTE:

Click OK to download the automatically generated password file.

Used to reset the password of a user who is using a development tool (such as APIs, the CLI, and SDK) that can access the cloud system through password authentication.

Set manually

Users set their own API passwords.

Used to reset any user's password.

Access key

Created by a user or a security administrator

Users can add or delete access keys in the Access Keys area.

NOTE:

Each user can create a maximum of two access keys, which are valid within 360 days. To ensure account security, keep them securely.

Users can access the cloud system by using access keys.

  • Require Password Reset: If you select Automatically generated or Set manually, you can choose whether to require password reset at the next login. This function is enabled by default to ensure account security.