tencent cloud

Configuring Access Permissions
Download PDF
Last updated:2025-12-15 10:54:59
Configuring Access Permissions
Last updated: 2025-12-15 10:54:59
Download PDF
This document describes how to configure access permissions for workflows in the Serverless Cloud Function (SCF) console.
Note:
Cloud Access Management (CAM) allows you to grant workflow access permissions to sub-users. It is recommended to authorize only the administrator role to use the Access Management page. The administrator can then grant permissions to other users.

Operation Steps

Console Entry

1. Log in to the Serverless Cloud Function (SCF) console. In the left sidebar, choose Data Engineering > Workflow.
2. On the Workflow page, click the workflow name to go to the target workflow details page. Then, select Access Management.


User Access Permissions

The platform provides three built-in roles: administrator, developer, and read-only user.
Role Name
Namespace Permission
Read/Write Permission
Administrator
All namespaces under the service
Read permissions
Write permissions
Developer
The specific namespace allocated during authorization
Read permissions
Write permissions
Read-only user
The specific namespace allocated during authorization
Read permissions
You can configure user access permissions by performing the following steps:
1. Click Add User.
2. In the Add User pop-up window, select the Tencent Cloud sub-user to be authorized from the drop-down list, and then select the role and namespace for authorization. The administrator role has permissions on all namespaces by default and does not require specification. Developers and read-only users should be granted at least one namespace permission. The following figures show the configurations:
Administrator role

Developers and read-only users

3. Click OK. After creation, the user list displays all authorized users for the service and their corresponding permissions, as shown in the following figure:

4. Click View Token, obtain the access address and login token information, and then send the information to the corresponding sub-account, as shown in the following figure:


User Permission Management

For an authorized user, click Grant Permissions to modify its role and namespace permissions, as shown in the following figure:

For an authorized user, click Delete to directly remove the user and revoke all permissions granted to the user, as shown in the following figure:


Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No

Feedback