Jansen
Forum Moderator
Forum Moderator
  • UID159
  • Fans1
  • Follows0
  • Posts19
Reads:6151Replies:1

IAM and RAM API Function Mapping

Created#
More Posted time:Jan 8, 2016 11:55 AM


User Management Interface


RAM

AWS

AliCloud

Can Be Migrated?

Difference Description

Create
  users

CreateUser

CreateUser

No

The
  Path parameter is a character string, which is not supported by AliCloud.
  However, this parameter is optional and can be left blank. Its default value
  is "/". AliCloud provides more detailed parameters.

Get
  user information

GetUser
·        GetUser

Yes

Same

Update
  user information

UpdateUser
·        UpdateUser

No

NewPath is not supported by AliCloud but it is
  optional and can be left blank. AliCloud provides more user information
  parameters

Delete
  users
·        DeleteUser
·        DeleteUser

Yes

Same

List
  users

ListUsers
·        ListUsers

No

Returned results are the same. AWS has a PathPrefix
  parameter while AliCloud does not. This parameter is used to filter out a
  qualified path from the results. It can be left blank and its default value
  is "/"

Create
  login configurations

CreateLoginProfile
·        CreateLoginProfile



AliCloud has an MFABindRequired parameter
  while AWS does not.



This parameter specifies whether the user must
  bind an MFA device upon the next login. It can be left blank

View
  login configurations

GetLoginProfile
·        GetLoginProfile

Yes

Same

Delete
  users' login configurations

DeleteLoginProfile
·        DeleteLoginProfile


Same

Modify
  login configurations

UpdateLoginProfile
·        UpdateLoginProfile



AliCloud has an MFABindRequired parameter
  while AWS does not.



This parameter specifies whether the user must
  bind an MFA device upon the next login. It can be left blank

Create
  AccessKey

CreateAccessKey
·        CreateAccessKey


Same

Update
  AccessKey

UpdateAccessKey
·        UpdateAccessKey


AWS's AccessKeyId parameter corresponds to
  AliCloud's UserAccessKeyId parameter

Delete
  AccessKey

DeleteAccessKey
·        DeleteAccessKey


AWS's AccessKeyId parameter corresponds to
  AliCloud's UserAccessKeyId parameter

List
  users' AccessKeys

ListAccessKeys
·        ListAccessKeys

No

AWS has two more parameters than AliCloud: Marker
  and MaxItems, so problems may occur during data migration. However, they have
  a common parameter "username". Other parameters can be left blank.

Create
  virtual MFA devices

CreateVirtualMFADevice
·        CreateVirtualMFADevice

No

AWS has a path parameter but AliCloud does not,
  causing incompatibility during migration

List
  virtual MFA devices

ListVirtualMFADevices
·        ListVirtualMFADevices

No


AWS has the following parameters while AliCloud does not:
  AssignmentStatus, Marker, and MaxItems, which will cause data inconsistency
  during migration. AliCloud does not need any parameters. As for the returned
  content, AWS has two more fields than AliCloud: IsTruncated and Marker



Delete
  virtual MFA devices

DeleteVirtualMFADevice
·        DeleteVirtualMFADevice

Yes

Same in parameters and returned content

Bind
  MFA devices

EnableMFADevice
·        BindMFADevice

Yes

Same

Unbind
  MFA devices

DeactivateMFADevice
·        UnbindMFADevice

No

AWS has a SerialNumber parameter while AliCloud
  does not. This parameter is used to notify that the result returned by AliCloud
  is MFADevice

Get
  MFA devices bound to users

ListMFADevices
·        GetUserMFAInfo

No

AWS has two more parameters than AliCloud: Marker
  and MaxItems

Get
  AccessKey recently used by users

GetAccessKeyLastUsed
·        N/A



Synchronize
  specific users' MFA devices to the server

ResyncMFADevice
·        N/A


Parameters include authentication code,
  Serial number, and Username

 

Group Management Interface


RAM

AWS

AliCloud

Can Be Migrated?

Difference Description

Create
  groups

CreateGroup

CreateGroup

No

Different
  from AliCloud, AWS has a path parameter to specify the group path. Its
  default value is "
".
  AliCloud has a Comments parameter while AWS does not, which can be ignored

Get
  group information

GetGroup
·        GetGroup

No

AWS
  has two more parameters than AliCloud: Marker and MaxItems, causing
  inconsistency during migration. As for the returned information, AWS has the
  data content such as IsTruncated, Marker, and users while AliCloud does not

Update
  group information

UpdateGroup
·        UpdateGroup

No

AWS
  has a path parameter while AliCloud does not, causing inconsistency during
  migration. AliCloud has a newComments parameter while AWS does not, which
  does not matter

List
  groups

ListGroups
·        ListGroups

No

AWS
  has a PathPrefix parameter while AliCloud does not, causing inconsistency
  during migration.

Delete
  groups

DeleteGroup
·        DeleteGroup

Yes

Same

Add
  users to a user group

AddUserToGroup
·        AddUserToGroup

Yes

Same

Remove
  users from a group

RemoveUserFromGroup
·        RemoveUserFromGroup

Yes

Same

List
  groups that users join

ListGroupsForUser
·        ListGroupsForUser

No

AWS
  has two more parameters than AliCloud: Marker and MaxItems, causing
  inconsistency during migration

List
  users in a user group

N/A
·        ListUsersForGroup




·        



 

·        




Role Management Interface


RAM

AWS

AliCloud

Can Be Migrated?

Difference Description

Create
  roles

CreateRole

CreateRole

No

AWS
  has a path parameter while AliCloud does not, causing inconsistency during
  migration. AliCloud has a Description parameter while AWS does not, which
  does not matter

Get
  roles

GetRole
·        GetRole

Yes

Same

Modify
  roles

N/A
·        UpdateRole

No


List
  roles

ListRoles
·        ListRoles

No

AWS
  needs Marker, MaxItems and PathPrefix parameters while AliCloud does not need
  any parameters. As for the returned content, AWS has IsTruncated and Marker
  parameters while AliCloud does not

Delete
  roles

DeleteRole
·        DeleteRole

Yes

Same

Add
  roles for a specified configuration instance

AddRoleToInstanceProfile
·        N/A

No


Query
  configuration instances of relevant roles

ListInstanceProfilesForRole
·        N/A

No


Delete
  configuration instances of a specified role

RemoveRoleFromInstanceProfile
·        N/A

No






 






















Jansen
Forum Moderator
Forum Moderator
  • UID159
  • Fans1
  • Follows0
  • Posts19
1st Reply#
Posted time:Jan 8, 2016 11:56 AM


Other Interfaces


RAM

AWS

AliCloud

Can Be Migrated?

Difference Description

Create
  instance configurations
CreateInstanceProfile

N/A

No


Create
  an ID for connecting to open interfaces
CreateOpenIDConnectProvider

N/A

No


Create
  an SAML 2.0 ID entity
CreateSAMLProvider

N/A

No


Delete
  instance configurations
DeleteInstanceProfile

N/A

No


Delete
  the ID for interface development
DeleteOpenIDConnectProvider

N/A

No


Delete
  an SAML ID
DeleteSAMLProvider

N/A

No


Delete
  server authentication
DeleteServerCertificate

N/A

No


Delete
  signature certificates
DeleteSigningCertificate

N/A

No


Delete
  SSH public keys
DeleteSSHPublicKey

N/A

No


Generate
  a credential report
GenerateCredentialReport

N/A

No


Get
  account authorization information
GetAccountAuthorizationDetails

N/A

No


Get
  account summary
GetAccountSummary

N/A

No


Get
  a credential report
GetCredentialReport

N/A

No


Get
  instance configurations
GetInstanceProfile

N/A

No


Get
  the connection ID information of OPENID
GetOpenIDConnectProvider

N/A

No


Get
  SAML ID information
GetSAMLProvider

N/A

No


Get
  server certificate information
GetServerCertificate

N/A

No


Get
  SSH public key information
GetSSHPublicKey

N/A

No


List
  instance configuration information
ListInstanceProfiles

N/A

No


List
  connection ID information of OPENID
ListOpenIDConnectProviders

N/A

No


List
  SAML ID information
ListSAMLProviders

N/A

No


List
  server certificate information
ListServerCertificates

N/A

No


List
  signature certificate information
ListSigningCertificates

N/A

No


List
  SSH public key information
ListSSHPublicKeys

N/A

No


Delete
  the client ID of OPENID
RemoveClientIDFromOpenIDConnectProvider

N/A

No


Update
  OpenID information
UpdateOpenIDConnectProviderThumbprint

N/A

No


Update
  SAML ID information
UpdateSAMLProvider

N/A

No


Update
  server certificate information
UpdateServerCertificate

N/A

No


Update
  signature certificate information
UpdateSigningCertificate

N/A

No


Update
  SSH public key information
UpdateSSHPublicKey

N/A

No


Upload
  server certificate information
UploadServerCertificate

N/A

No


Upload
  signature certificate information
UploadSigningCertificate

N/A

No


Upload
  SSH public key information
UploadSSHPublicKey

N/A

No


 


Guest