Associate or disassociate a database account with or from a RAM user - AnalyticDB

If you want to use a Resource Access Management (RAM) user to develop jobs or use a standard account to access Object Storage Service (OSS) external tables, you must associate your standard account with your RAM user. This topic describes how to associate or disassociate a standard account with or from a RAM user.

Prerequisites

Differences between RAM users and database accounts

RAM users are applied to AnalyticDB for MySQL clusters. You can use a RAM user to manage clusters within the scope of permissions granted by your Alibaba Cloud account.
Sample operations: create a cluster, configure an IP address whitelist, and create a database account.
Database accounts are applied to databases in AnalyticDB for MySQL clusters. You can use a database account to manage databases within the scope of permissions.
Sample operations: create a database, create a table, and create a view.

For more information, see Account types.

Usage notes

By default, privileged accounts are associated with the current Alibaba Cloud account or RAM user.
If you want to use AnalyticDB for MySQL Spark in the Data Management (DMS) console as a RAM user, you must associate a standard account with the RAM user and associate a privileged account with the Alibaba Cloud account of the RAM user.

Mapping scenarios between AnalyticDB for MySQL standard accounts and RAM users

SQL editor: When you log on to the SQL editor as a RAM user, you must map the RAM user to a standard account of AnalyticDB for MySQL to read and write tables.
Java Database Connectivity (JDBC) connection: When you use a standard account of AnalyticDB for MySQL to connect to a database in JDBC mode, you must map the standard account to a RAM user to read and write external tables such as OSS external tables.
Spark application: When you start a Spark application as a RAM user, you must map the RAM user to a standard account of AnalyticDB for MySQL to connect to the AnalyticDB for MySQL cluster.

Associate a database account with a RAM user

Log on to the AnalyticDB for MySQL console. In the upper-left corner of the console, select a region. In the left-side navigation pane, click Clusters. On the Enterprise Edition, Basic Edition, or Data Lakehouse Edition tab, find the cluster that you want to manage and click the cluster ID.
In the left-side navigation pane, click Accounts.
On the Database Accounts tab, find the database account that you want to manage and choose Manage RAM Association in the Actions column.
In the Manage RAM Association panel, enter a RAM user ID.
Note
You can view the RAM user ID in the RAM console.
Click OK.

Disassociate a database account from a RAM user

On the Database Accounts tab, find the database account that you want to manage and choose Manage RAM Association in the Actions column.
In the Manage RAM Association panel, click the icon next to the RAM user ID and click OK.