Configuring IAM Permissions¶
This section describes how to use IAM for fine-grained permission management on your SWR resources. With IAM, you can:
Create IAM users for employees based on your enterprise's organizational structure. Each IAM user will have their own security credentials for accessing SWR resources.
Grant only the permissions required for users to perform a specific task.
Entrust a cloud account or cloud service to perform efficient O&M on your SWR resources.
If your account does not need individual IAM users, you may skip this section.
This section describes the procedure for granting permissions (see Figure 1).
Prerequisite¶
Learn about the permissions supported by SWR and choose policies or roles based on your requirements.
Process Flow¶
Figure 1 Process for granting SWR permissions¶
Create a user group and assign permissions.
Create a user group on the IAM console, and assign the SWR Administrator policy to the group.
Create an IAM user and add the user to a user group.
Create a user on the IAM console and add the user to the group created in 1.
Log in as the IAM user and verify permissions.
Choose Service List > Software Repository for Container. The SWR console is displayed.
In the navigation pane on the left, choose Organization Management, click Create Organization in the upper right corner, and enter an organization name to create an organization.
In the navigation pane on the left, choose My Images, click Upload Through Client in the upper right corner. Select the organization created in the previous step and a image file. The image is successfully uploaded.