All Products
Search
Document Center

Enterprise Distributed Application Service:Manage RAM users

Last Updated:Feb 01, 2024

Enterprise Distributed Application Service (EDAS) supports the account system of Alibaba Cloud Resource Access Management (RAM). You can create RAM users within your Alibaba Cloud account to avoid sharing your AccessKey pair with other users. You can also assign the minimum permissions to RAM users as needed to complete different types of jobs by using different user identities for efficient enterprise management.

Introduction to RAM users

When you use your Alibaba Cloud account on EDAS, you can complete different types of jobs by using different user identities. For example, you can create, start, query, and delete applications as an application administrator. In addition, you can view resources, check application monitoring data, manage alert rules, and manage throttling and degradation rules as an operations administrator. You can allocate different roles and resources to RAM users of an Alibaba Cloud account to complete different types of jobs by using different user identities. This permission management mode is similar to that in Linux. System users can manage permissions of normal users.

Take note of the following rules for RAM users:

  • RAM users are created by an Alibaba Cloud account in the RAM console. Validity check is not required for RAM users, but the name of each RAM user must be unique within the Alibaba Cloud account.

  • Unlike Alibaba Cloud accounts, RAM users have an independent logon portal https://signin.aliyun.com.

Log on to the EDAS console as a RAM user

  1. Use an Alibaba Cloud account to log on to the RAM console.

  2. On the Overview page, click the URL below RAM user logon in the Account Management section.

    Note

    The RAM user logon URL varies with the Alibaba Cloud account.

  3. On the RAM User Logon page, enter the logon name of the RAM user and click Next.

  4. Enter the logon password and click Log on.

    Note

    If Required at Next Logon is selected for Password Reset, the RAM user is required to reset the password after its first logon to the console.

  5. Log on to the EDAS console as a RAM user.

Remove a permission granted to a RAM user

  1. Log on to the RAM console by using your Alibaba Cloud account.
  2. In the left-side navigation pane, choose Identities > Users.
  3. On the Users page, click the username of a specific RAM user.
  4. On the page that appears, click the Permissions tab, find the policy that you want to detach from the RAM user, and then click Revoke Permission in the Actions column.
  5. In the Revoke Permission message, click Revoke Permission.

Delete a RAM user

For more information, see Delete a RAM user.