This topic describes how to grant permission to a RAM role. You can grant permission to a RAM role that you created for a trusted Alibaba Cloud account, Alibaba Cloud service, or identity provider (IdP).


  1. Log on to the RAM console.
  2. Choose Permissions > Grants.
  3. Click Grant Permission.
  4. In the Principal field, enter the role name and click the target RAM role.
    Note You can also enter keywords to search for a specific RAM role.
  5. In the Policy Name column, select the target policy and click OK.
    Note You can click X to revoke your selection.