Access control

Last Updated: Nov 13, 2017

Table Store implements specific instance configuration and AccessKey authentication to ensure access security.

Instance access

When accessing the table data of Table Store, the instance the table belongs to must first be confirmed. Once Table Service is activated, an instance can be created. Through the Table Store console, you can create, manage, delete, and perform other operations on Table Store instances. After creating an instance, you can manage Table Store’s tables in the instance. Instances in the same Alibaba Cloud region must be unique, but instances across different Alibaba Cloud regions can use the same name.

For example, the access domain names for an instance named myInstance in China East 1 (hangzhou) are:

  • Public network: https://myInstance.cn-hangzhou.ots.aliyuncs.com

  • Private network: https://myInstance.cn-hangzhou.ots-internal.aliyuncs.com

AccessKey

Table Store authenticates and authorizes requests based on AccessKeys. This means that each Table Store request must carry the correct AccessKey information.

Each Alibaba Cloud account can create up to 5 AccessKeys. You can manage AccessKeys in the Alibaba Cloud User Center. An AccessKey is composed of an AccessKeyID and AccessKeySecret. The AccessKeyID is used to identify the AccessKey and the AccessKeySecret is used to encrypt the Table Store request. An AccessKeySecret is used to authenticate the request’s identity. It is strongly recommended that the AccessKeySecret is kept secure, as AccessKeys of an Alibaba Cloud account can be used to access all instances of this account.

AccessKeys can be in one of two statuses: Active or Inactive. Only AccessKeys in Active status can be used to access Table Store. You can change the Active/Inactive status of their AccessKeys in the Alibaba Cloud User Center. Changes to an AccessKey’s status may take up to one minute to take effect.

Thank you! We've received your feedback.