Access control

Last Updated: Aug 01, 2017

Table Store uses AccessKey and instances to ensure access security.

Instance access

When accessing the table data of Table Store, the instance to which the table belongs must first be confirmed. After subscribing to the Table Store service, instances are the logical containers for resource management. On the Table Store console, you can create, manage, delete and perform other operations on Table Store instances. After creating an instance, you can manage the Table Store’s tables in the instance. Here, the Instance Name must be unique within an Alibaba Cloud region. Instances with the same name can exist among different Alibaba Cloud regions. The instance name is used as the endpoint prefix:

  • Public network address:

  • Alibaba Cloud private network address:

For example, the access domain names for an instance named myInstance in China East 1 (hangzhou) are:

  • Public network:

  • Private network:


Table Store authenticates and authorizes requests based on AccessKeys. Therefore, each Table Store request must carry the correct AccessKey information.

Each Alibaba Cloud account can create up to 5 AccessKeys. You can manage their AccessKeys in the Alibaba Cloud User Center. An AccessKey is composed of an AccessKeyID and an AccessKeySecret. The AccessKeyID is used to identify the AccessKey and the AccessKeySecret is used to encrypt the Table Store request. The AccessKeySecret is an important credential used to authenticate the request’s identity. Therefore, you must ensure the confidentiality and security of the AccessKeySecret. The AccessKeys of an Alibaba Cloud account can be used to access all instances of this account.

AccessKeys have two states: Active and Inactive. Only AccessKeys in the Active status can be used to access Table Store. You can change the Active/Inactive states of their AccessKeys in the Alibaba Cloud User Center. After an AccessKey’s state is changed, the change will take effect after one minute.

Thank you! We've received your feedback.