edit-icon download-icon

Grant permissions

Last Updated: Sep 15, 2017

In RAM, granting permissions indicates attaching policies to a RAM user, a user group, or a RAM role.

  • Attaching policies to a RAM user or a user group is used for granting permissions to users under the current Alibaba Cloud account.

  • Attaching policies to a RAM role (which has specified other Alibaba Cloud account as the trusted Alibaba Cloud account) is used for granting permissions to users under other Alibaba Cloud account.

This document describes how to attach policies to a RAM user, a user group, or a RAM role.

Attach policies to a RAM user or a user group

To attach policies to a RAM user:

  1. Log on to the RAM console.

  2. On the left-side navigation pane, click Users.

  3. On the User Management page, locate your user (searching by user name is available) and click the corresponding Authorize in the Actions column.

  4. On the Edit User-Level Authorization window, select necessary policies to grant to the user.

To attach policies to a user group:

  1. Log on to the RAM console.

  2. On the left-side navigation pane, click Groups.

  3. On the Group Management page, locate your group (searching by group name is available) and click the corresponding Authorize in the Actions column.

  4. On the Edit Group Authorization Policy window, select necessary policies to grant to the group.

Attach policies to a RAM role

To attach policies to a RAM role:

  1. Log on to the RAM console.

  2. On the left-side navigation pane, click Roles.

  3. On the Role Management page, locate your group (searching by role name is available) and click the corresponding Authorize in the Actions column.

  4. On the Edit Role Authorization Policy window, select necessary policies to grant to the role.

Thank you! We've received your feedback.