MaxCompute supports the Alibaba Cloud account system and the RAM account system.
MaxCompute can recognize the RAM account system but cannot recognize the RAM permission system. Users can add any of their RAM sub-accounts to a project of MaxCompute. However, MaxCompute skips the RAM permission definitions when it verifies the permissions of the RAM sub-account.
By default, the MaxCompute project only recognizes the Alibaba Cloud account system. You can view the account system supported by this project by running
Typically, only Alibaba Cloud accounts are displayed. To add the RAM account system, run the add accountprovider ram;command. After the RAM account system is added, you can run list accountproviders; to make sure it has been successfully added to the supported account systems.
If you do not have an Alibaba Cloud account, visit here to apply for one.
You need a valid email address when you apply for an Alibaba Cloud account. The email address is then used as the account name after registration. For example, Alice can use her email address email@example.com to register an Alibaba Cloud account. Her account name is firstname.lastname@example.org after Alibaba Cloud account registration.
Click here to create or manage your AccessKey list after you register an Alibaba Cloud account.
An AccessKey consists of the AccessKeyID and AccessKeySecret. The AccessKeyID is used to retrieve the AccessKey, and the AccessKeySecret is used to sign the computing messages. You must secure your AccessKey from disclosure. When an AccessKey needs updated, you can create a new AccessKey and disable the existing AccessKey.
You must configure the AccessKey in the configuration file conf/odps_config.ini before you use odpscmd to log on. The following is an example:
access_id=<Input the AccessKeyID here, excluding the angle brackets>
access_key=<Input the AccessKey here, excluding the angle brackets>
To enable or disable an AccessKey on the Alibaba Cloud website, it takes 15 minutes after the operation is completed.