Creating and Managing Policies


This section shows how to manage the policies that define the access permissions to specific resources. This task is the prerequisite to managing the custom access rights of the user, user groups, and service accounts.

Creating a Policy

  1. In the EnOS Management Console, click IAM > Policy from the left navigation panel.

  2. Click New Policy.

  3. In the Basic Information page, provide the basic information of the policy, and click Next.

  4. In the Grant Permissions page, you can set policies for two areas.

    • Console Menu: Grants permission to access the selected menu items for the EnOS Management Console.
    • Services: Grants permissions for services. For more information, see Service Permissions.

    Note

    Granting access permissions to items in the Console Menu does not automatically grant the read/write/delete permissions for the corresponding services. It is therefore necessary to grant the permissions in Services at the same time.


  5. Click Save to complete creating the policy. After creating the policy, the user assigned with this policy will only see and access the items and services that have been selected above.

Editing a Policy

  1. In the EnOS Management Console, click IAM > Policy from the left navigation panel.

  2. Find the policy you wish to edit.

    • Edit basic information such as name and description: Click the Edit icon edit.
    • Edit the policy permissions: Click the Authorize icon auth.


  3. Click Save to finish editing and save the changes.

Deleting a Policy

  1. In the EnOS Management Console, click IAM > Policy from the left navigation panel.
  2. Click the Delete icon delete for the policy to be deleted.
  3. In the pop-up window, click Confirm to complete deleting this policy.

Note

When you delete a policy, EnOS revokes the corresponding permissions for the users, user groups, or service accounts who have been granted this policy.