Before you use a Resource Access Management (RAM) user to access the Overview page and homepage in the ApsaraMQ for MQTT console, you must perform the mq:MqttMetaData action to grant the RAM user the corresponding permissions.
Description
The Overview page in the ApsaraMQ for MQTT console collects the information and metadata of all your instances. To ensure data security, the mq:MqttMetaData action is added for RAM user authentication as of April 26, 2024. A RAM user can access the Overview page and the homepage of the ApsaraMQ for MQTT console only after you perform the mq:MqttMetaData action to grant the RAM user the required permissions. To view the instance list, you must also perform the mq:ListMqttInstance action to grant the RAM user the permissions on instances. For information about the details and examples of policies, see Policies and Sample policies.
Impacts
The security upgrade does not affect business. If you do not perform the mq:MqttMetaData action on a RAM user, an error message that indicates you are not authorized is displayed when you use the RAM user to access the Overview page and homepage in the ApsaraMQ for MQTT console. In this case, you need to only authorize the RAM user based on sample policies.
We apologize for the inconvenience. If you have questions, join the DingTalk group 116015007918 to contact ApsaraMQ for MQTT technical support.