Identity and access management

RAPIDFS

  • Console Operation Guide
    • Cache Instance Operations
      • Create Cache Instance
      • Delete Cache Instance
      • Manage Cache Instance
    • Data Source Operations
      • Import data source
      • Remove Data Source
      • Using data sources
    • Data Sync Operations
      • Cache management
        • Create cache management rule
        • Delete Cache Management Rule
        • Start-Stop Cache Management Task
      • Metadata Sync
        • Create metadata sync rule
        • Delete Metadata Synchronization Rule
        • Start-Stop Metadata Synchronization Task
    • Identity and access management
    • Permission Group Operations
      • Create Permission Group
      • Delete permission group
      • Modify permission group
  • Operation guide
    • Use manually deployed RapidFS
    • Using RapidFS via Big Data BMR Service
    • Using RapidFS via Cloud Container Engine (CCE)
  • Product Introduction
    • Application scenarios
    • Core Concepts (Not Available)
    • Product Introduction
    • Product specifications
  • Product pricing
  • Quick Start
    • Activating Product Services
    • Quick Start
  • Service Level Agreement (SLA)
    • RapidFS Service Level Agreement (SLA)
All documents
menu
No results found, please re-enter

RAPIDFS

  • Console Operation Guide
    • Cache Instance Operations
      • Create Cache Instance
      • Delete Cache Instance
      • Manage Cache Instance
    • Data Source Operations
      • Import data source
      • Remove Data Source
      • Using data sources
    • Data Sync Operations
      • Cache management
        • Create cache management rule
        • Delete Cache Management Rule
        • Start-Stop Cache Management Task
      • Metadata Sync
        • Create metadata sync rule
        • Delete Metadata Synchronization Rule
        • Start-Stop Metadata Synchronization Task
    • Identity and access management
    • Permission Group Operations
      • Create Permission Group
      • Delete permission group
      • Modify permission group
  • Operation guide
    • Use manually deployed RapidFS
    • Using RapidFS via Big Data BMR Service
    • Using RapidFS via Cloud Container Engine (CCE)
  • Product Introduction
    • Application scenarios
    • Core Concepts (Not Available)
    • Product Introduction
    • Product specifications
  • Product pricing
  • Quick Start
    • Activating Product Services
    • Quick Start
  • Service Level Agreement (SLA)
    • RapidFS Service Level Agreement (SLA)
  • Document center
  • arrow
  • RAPIDFS
  • arrow
  • Console Operation Guide
  • arrow
  • Identity and access management
Table of contents on this page
  • Create User
  • Create User
  • Configuration Policy
  • User Authorization
  • Sign in as IAM User

Identity and access management

Updated at:2025-11-12

Create User

Identity and Access Management helps users manage resource access permissions within cloud accounts. It caters to various enterprise roles by granting different staff levels access to specific product permissions. For enterprises requiring multi-user collaboration for resource operations, using Identity and Access Management is recommended.

It is applicable to the following usage scenarios:

  • Medium and large enterprise customers: Authorization management for multiple employees in the enterprise
  • Technology-oriented vendor or SAAS platform provider: Resource and permission management for proxy clients
  • Small and medium-sized developers or small enterprise: Add project members or collaborators for resource management

Create User

  1. After logging into the root account, select Identity and Access Management from the console to access the user management page.

image.png

  1. Navigate to User Management in the left navigation bar, and on the IAM User page, click Create IAM User.

image.png

  1. In the New User dialog box that appears, enter the username, confirm the details, and return to the IAM User Management List to view the newly created IAM user.

image.png

Configuration Policy

RapidFS provides system policies enabling both product-level and instance-level permission control.

System policy: A pre-defined set of permissions provided by the Baidu AI Cloud system for resource management. These can be directly assigned to IAM users, but users cannot modify them.

The permissions corresponding to the three types of system policies and their mappings to RapidFS operations are as follows:

System policies Permission scope
Management operations All RapidFS operations
Operation and maintenance operations View RapidFS instance list
View RapidFS instance details
Edit data source APIs
View data source APIs
View permission group list APIs
Edit permission group APIs
Read-only operation View RapidFS instance list
View RapidFS instance details
View data source APIs
View permission group list APIs

User Authorization

Under User Management -> IAM User List, locate the relevant IAM user and click Add Permission in the Operations column. You can then authorize the user through either a System Policy or a Custom Policy.

image.png

Sign in as IAM User

After the root account authorizes the IAM user, it can share the login link with the IAM user. The IAM user can then access the root account's management console via this link and operate or view the root account's resources based on the granted policies.

image.png For other detailed operations, refer to: Identity and Access Management.

Previous
Data Sync Operations
Next
Permission Group Operations