Role Management

Roles, like users, are a type of IAM identity. An IAM role is a virtual user, without a determined authentication key, it needs a trusted entity user to assume this role in order to use it normally.

Creating a Role

Authorizing a Role

Using a Role

By calling the API to assume the IAM role A privileged IAM user can use its access key to call the AssumeRole API, to obtain a security token (STS Token) of a certain IAM role, hence using the secure token to access UCloud Global. For more details, refer to sts.