An AccessKey is equivalent to a logon password, but they are used in different scenarios. AccessKeys are used to call cloud service APIs by program, while logon passwords are used to log on to the console. If you do not need to call APIs, you do not need to create an AccessKey.
You can use the AccessKey to construct an API request (or use the cloud service SDK) for operating resources. An AccessKey is composed of an AccessKeyID and an AccessKeySecret.
- The AccessKeyID is used to identify the user.
- The AccessKeySecret is used to verify the user’s key, which is confidential.
Note: Do not use the AccessKey of the primary account. If it is disclosed, all your resources may be unsafe. Use the AccessKey of an RAM user account to reduce the risk of AccessKey disclosure.
Log on to the RAM console.
Click User on the left-side menu pane.
Click a target user to go to the user details page.
Click Create AccessKey in the User AccessKey area.
In the Create User Access Key dialog box, expand AccessKey Details to view the AcessKeyID and AccessKeySecret. Click Save AccessKey Information to download the AccessKey.
Note: Keep your AccessKey safe and confidential.