This topic describes the release notes of Resource Access Management (RAM) features and provides links to relevant references.
August 2021
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
CloudSSO  |
CloudSSO is integrated with Alibaba Cloud Resource Directory to provide unified multi-account identity management and access control. You can use CloudSSO to centrally manage users of an enterprise who need to access Alibaba Cloud resources and assign access permissions on the accounts in a resource directory to the users. You can also configure settings to implement single sign-on (SSO) access to Alibaba Cloud resources from an identity provider (IdP). You need to configure the settings only once. | 2021-08 | China (Shanghai) and US (Silicon Valley) | What is CloudSSO? |
April 2021
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Alibaba Cloud services that support RAM | RAM is available for Alibaba Cloud Public DNS. | 2021-04 | N/A | Alibaba Cloud services that support RAM |
| Alibaba Cloud services that support Security Token Service (STS) | STS is available for Alibaba Cloud Public DNS. | 2021-04 | N/A | Alibaba Cloud services that support STS |
March 2021
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| FIDO U2F |
FIDO Universal 2nd Factor (FIDO U2F) is a widely used multi-factor authentication (MFA) protocol that is created by the FIDO Alliance. U2F security keys are a type of MFA device that supports the U2F protocol. After a U2F security key is enabled, two authentication factors are required when a RAM user logs on to Alibaba Cloud.
|
2021-03 | All regions |
September 2020
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Alibaba Cloud services that support RAM | RAM is available for the Tag service. | 2020-09 | N/A | Alibaba Cloud services that support RAM |
| Alibaba Cloud services that support STS | STS is available for the Tag service. | 2020-09 | N/A | Alibaba Cloud services that support STS |
July 2020
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Resource group-based authorization in the RAM console | A RAM user, RAM user group, or RAM role can be granted permissions in the RAM or Resource Management console. The permissions on the resources of an Alibaba Cloud account or on a specific resource group can be granted. The permissions of a RAM user, RAM user group, or RAM role can also be revoked. | 2020-07 | All regions | None |
June 2020
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Alibaba Cloud services that support RAM | RAM is available for Time Series Database (TSDB) for InfluxDB. | 2020-06 | N/A | Alibaba Cloud services that support RAM |
| Version rotation of custom policies | When you modify a custom policy that has five versions in the RAM console, the earliest version that is not in use can be replaced with the latest version. | 2020-06 | All regions | Manage custom policy versions |
May 2020
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Configuration of the maximum role session duration | The maximum role session duration can be configured in the RAM console. The configuration applies when you log on to the console by using role-based SSO or when you use the console or call an API operation to assume a RAM role. | 2020-05 | All regions | Specify the maximum session duration for a RAM role |
March 2020
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Alibaba Cloud services that support RAM | RAM is available for AnalyticDB for MySQL. | 2020-03 | N/A | Alibaba Cloud services that support RAM |
| Alibaba Cloud services that support STS | STS is available for Elastic High Performance Computing (E-HPC). | 2020-03 | N/A | Alibaba Cloud services that support STS |
| Service-linked role | Service-linked roles are provided by Alibaba Cloud RAM. Service-linked roles can be used to simplify the process of authorizing an Alibaba Cloud service to access other services and use a specific feature. Alibaba Cloud RAM provides service-linked roles for such scenarios. | 2020-03 | All regions | Service-linked roles |
| Configuration of the maximum role session duration | A new parameter named MaxSessionDuration is provided in API operations to specify the maximum session duration of a RAM role.
|
2020-03 | All regions |
February 2020
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Alibaba Cloud services that support STS | STS is available for Dynamic Route for CDN (DCDN). | 2020-02 | N/A | Alibaba Cloud services that support STS |
January 2020
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Alibaba Cloud services that support STS | STS is available for ApsaraVideo Live. | 2020-01 | N/A | Alibaba Cloud services that support STS |
December 2019
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Alibaba Cloud services that support RAM | RAM is available for Server Migration Center (SMC). | 2019-12 | N/A | Alibaba Cloud services that support RAM |
November 2019
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| User credential report | A user credential report that contains the details of your Alibaba Cloud account and RAM users can be generated and downloaded in the RAM console. The details include logon passwords, AccessKey pairs, and multi-factor authentication (MFA) devices. | 2019-11-15 | All regions | Generate and download user credential reports |
| Alibaba Cloud services that support STS | STS is available for Hybrid Backup Recovery (HBR). | 2019-11 | N/A | Alibaba Cloud services that support STS |
October 2019
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Alibaba Cloud services that support RAM | RAM is available for ID Verification for Financial Services. | 2019-10 | N/A | Alibaba Cloud services that support RAM |
| RAM is available for AnalyticDB for PostgreSQL. | ||||
| Alibaba Cloud services that support STS | STS is available for Cloud Enterprise Network. | 2019-10 | N/A | |
| STS is available for E-MapReduce. | Alibaba Cloud services that support STS |
September 2019
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Enabling or disabling of console logons for RAM users | The access of RAM users to the console can be enabled and disabled. You can retain the password, MFA, and other logon settings when you disable the access of RAM users to the console. You can also clear console logon settings. | 2019-09-09 | All regions | Manage console logon settings for a RAM user |
| Alibaba Cloud services that support RAM | RAM is available for Logic Composer. | 2019-09 | N/A | Alibaba Cloud services that support RAM |
June 2019
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| Auxiliary domain names for user-based SSO | The configuration of user-based SSO can be simplified by using auxiliary domain names. | 2019-06-28 | All regions | Overview of user-based SSO |
April 2019
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| SSO | Alibaba Cloud supports Security Assertion Markup Language (SAML) 2.0-based SSO. This feature is also known as identity federation. SSO can be implemented between an enterprise identity service and Alibaba Cloud. | 2019-04-04 | All regions | SSO overview |
November 2018
| Feature | Description | Release date | Region | References |
|---|---|---|---|---|
| RAM console | The RAM console is updated. | 2018-11-15 | All regions | RAM documentation |