Organization service management is the process of managing TCO-enabled Tencent Cloud services. TCO allows these Tencent Cloud services to access the department and member information in the TCO console. You can use the admin account or delegated admin account to manage the organization business in the console of each TCO-enabled product to simplify the unified management of your cloud business.
You can use the organization service management feature in the TCO console or through APIs. Below are the console directions.
3. (Optional) In the TCO console, use the admin account to specify a member as the delegated admin of the organization service management. If you don't specify a delegated admin, you need to use the admin account to manage your business in the TCO-enabled product console. For more information, see Managing Delegated Admin Account. Note:
This step only applies to the scenario where the delegated admin is supported.
4. In the TCO console, use the admin or delegated admin account to enable the multi-account management feature. Select members that need to be managed in a unified manner based on the organization structure and manage business for the selected members. Enabling/Disabling Organization Service Management
1. You can enable or disable the organization service management feature in the consoles of the TCO-enabled products or through APIs.
2. You can go to the Organization service management page to view whether this feature is enabled. However, you cannot enable or disable this feature in the TCO console. 3. For some TCO-enabled products, when you perform certain operations, the status of the organization service management feature will be automatically updated to "Enabled".
4. The feature status will be automatically updated to "Disabled" when you perform operations such as disabling a feature. If you disable organization service management for a TCO-enabled product, the product cannot access the organization accounts or resources in TCO, and all TCO-related resources will be deleted from the product.
Organization service management and service-linked role
1. TCO has created a service-linked role TencentCloudServiceRoleForOrganizations for each member. This role allows TCO to create roles for a TCO-enabled product. This role can only be played by TCO.
2. The TCO-enabled product only creates service-linked roles for members who need to perform admin operations. This role defines the permissions with which the TCO-enabled product can perform certain operations. It can only be played by the corresponding TCO-enabled product.
3. The permission policy of the service-linked role is defined and used by the corresponding cloud service. You cannot modify or delete the permission policy, nor can you add or remove permissions for the service-linked role.