Granting Operation-Level Permissions to Sub-accounts
Scenarios
This document describes how to use a Tencent Cloud root account to grant operation-level permissions to its sub-accounts. You may grant different read/write permissions to sub-accounts as required.
Prerequisites
A sub-account has been created for an employee using the Tencent Cloud root account. For detailed operations, see Creating a Sub-account.
Operation Steps
Granting Full Read/Write Permissions
Note:
After a sub-account is granted full read/write permissions, the sub-account will have full read/write capabilities for all resources under the root account.
1. Log in with your root account to the CAM console.
2. In the left sidebar, select Policy to go to the policy management list page, then input QcloudMQTTFullAccess in the search box on the right to search.
3. In the search result, click QcloudMQTTFullAccess Associate User/Group/Role, then select the sub-account that requires authorization.
4. Click OK to complete authorization. The policy will appear in the user's policy list.
Granting a Read-Only Permission
Note:
After a sub-account is granted the read-only permission, the sub-account will have the read-only capability for all resources under the root account.
1. Log in with your root account to the CAM console.
2. In the left sidebar, select Policy to go to the policy management list page, then input QcloudMQTTReadOnlyAccess in the search box on the right to search.
3. In the search result, click Associate User/Group/Role in the Operation column of QcloudMQTTReadOnlyAccess, then select the sub-account that requires authorization.
4. Click OK to complete authorization. The policy will appear in the user's policy list.
Help and Support
Was this page helpful?
You can also Contact sales or Submit a Ticket for help.
Help us improve! Rate your documentation experience in 5 mins.
Feedback