Identity and Access Management
Contact Sales

Identity and Access Management (IAM)

Identity and Access Management (IAM)

Identity and Access Management (IAM) enables you to easily manage users and control their access to HUAWEI CLOUD services and resources.

Identity and Access Management (IAM) enables you to easily manage users and control their access to HUAWEI CLOUD services and resources.

Get started today at no additional cost to your account.

Product Advantages

Crystal clear visibility of all your users' permissions with IAM - HUAWEI CLOUD's universal access control service

  • Simplified, Delegated, Centralized Access

    Set fine-tuned, granular access with groups and roles. Control access to resources for users from both your enterprise and trusted external agencies.

    Set fine-tuned, granular access with groups and roles. Control access to resources for users from both your enterprise and trusted external agencies.

  • Clear Visibility and Improved Security

    Use one system to manage all users and groups, enforce security policies, protect logins with multi-factor authentication (MFA), and audit logs.

    Use one system to manage all users and groups, enforce security policies, protect logins with multi-factor authentication (MFA), and audit logs.

  • Easy Integration with Existing Identity Systems

    Connect your enterprise identity system and HUAWEI CLOUD via IAM, enabling users in your enterprise to log in with single sign-on (SSO).

    Connect your enterprise identity system and HUAWEI CLOUD via IAM, enabling users in your enterprise to log in with single sign-on (SSO).

  • Free of Charge

    IAM is an integrated service, offered at no additional cost. You will only be billed for other HUAWEI CLOUD products purchased by your users.

    IAM is an integrated service, offered at no additional cost. You will only be billed for other HUAWEI CLOUD products purchased by your users.

Application Scenarios

IAM makes it simple to manage every authorized user, inside and outside your organization

User Access Management

Create user groups for different departments, add employees as IAM users to groups, and assign the groups permissions for required cloud resources.


Advantages

  • No Password Sharing

    IAM users use their own credentials to log in to HUAWEI CLOUD and use cloud resources based on assigned permissions.

  • Granular Control

    Grant IAM users only the permissions for specific services and resources in specific projects.

  • Account Security Policies

    Keep user information and system data secure with critical operation protection, access control list (ACL), and other security policies.

Cross-Account Delegation

Delegate resource access to trusted third parties (with their own HUAWEI CLOUD account) without sharing your password or access keys.


Advantages

  • Simple Access Delegation

    Establish, modify, or cancel a trust relationship between two accounts at any time according to business needs.

  • No Account Sharing

    The delegated account uses their own login to access only resources you specify.

  • Efficient Management

    Delegated accounts can authorize their own IAM users to manage resources, without compromising the security of your account's data or resources.

Federated Identity Authentication

Enterprises with existing identity systems can use IAM to enable SSO without creating additional user accounts in HUAWEI CLOUD or managing multiple identity systems.


Advantages

  • Universal Logins

    With SSO, users in your enterprise can use their existing accounts to log in to HUAWEI CLOUD and use cloud resources based on assigned permissions.

  • Simple User Management

    Create user accounts in your enterprise identity system and the users will be able to access both your enterprise's applications and HUAWEI CLOUD.

  • Multiple Implementation Methods

    SAML-based and OpenID Connect–based SSO is supported. If your enterprise identity system does not support these standards, you can also configure a custom identity broker to implement SSO.

Functions

Get powerful features and enterprise-grade access control as standard with IAM

  • Permissions Management

    Easily manage users, groups and projects. Set up fine-grained access to resources with custom permissions policies.

    Easily manage users, groups and projects. Set up fine-grained access to resources with custom permissions policies.

  • Resource Access Delegation

    Delegate access to trusted external agencies using different HUAWEI CLOUD accounts, or to dependent cloud services.

    Delegate access to trusted external agencies using different HUAWEI CLOUD accounts, or to dependent cloud services.

  • Federated Identity Authentication

    Unify your existing enterprise identity system via IAM, synchronize selected users, and enable SSO.

    Unify your existing enterprise identity system via IAM, synchronize selected users, and enable SSO.

  • Account Security

    Update user information, and limit access from specified network locations.

    Update user information, and limit access from specified network locations.

  • Security Policies

    Keep logins secure with security policies for sessions, incorrect logins, and passwords.

    Keep logins secure with security policies for sessions, incorrect logins, and passwords.

  • User Verification

    Protect your environment with multi-factor login authentication, and additional checks for critical operations.

    Protect your environment with multi-factor login authentication, and additional checks for critical operations.

Documentation

Learn more about IAM

Getting Started

Technical Documents

Frequently Asked Questions

查看更多 收起

Sign up and start an amazing cloud journey

Try Free