All Documents
Current Document

Recommend

Container Engine Virtual Private Cloud Standard Storage Service

Found 0 result in total

Content is empty

If you don't find the content you expect, please try another search term

Documentation

Identity and Access Management

View more results
Document title with current keyword not found
Directory
Expand AllFold All Up
No products found with this keyword
Documentation Identity and Access Management Permission Policy Management Overview

Overview

Last updated:2021-10-29 17:57:40

A permission specifies whether to allow or deny some operations on the corresponding resources in specific conditions. A policy is a set of permissions.

Permission

Permissions indicate whether a user is allowed to perform a specific operation on a resource. Permissions include Allow and Deny.

Policy

Policies are a set of permissions defined based on the policy syntax and structure, which can accurately describe the authorized resource set, operation set, and authorization conditions.

Identity and Access Management (IAM) supports the following two types of policies:

  • System policies: Kingsoft Cloud creates and updates system policies. You can only use the policies but not modify them.
  • Custom policies: You can create, update, and delete the policies.

Authorization

Authorization is the operation of granting permissions necessary for specific work to the corresponding identity (IAM user, IAM group, or IAM role). After obtaining the permissions, the identity can access the corresponding cloud service and perform required operations.

  • You can attach system policies and custom policies to the identity.
  • If the attached policies are updated, the new policies automatically take effect, and you do not need to attach the new policies to the identity.
On this page
Previous:Permission Policy Management
Next:Policy elements
Pure ModeNormal Mode

Pure Mode

Click to preview the document content in full screen
Feedback