This topic describes how to create and obtain an AccessKey pair for an Alibaba Cloud account or a Resource Access Management (RAM) user. When you call operations, you must use the AccessKey pair to complete identity verification.
An AccessKey pair consists of an AccessKey ID and an AccessKey secret.
The AccessKey ID is used to identify a user.
The AccessKey secret is used to verify the identity of the user. You must keep your AccessKey secret confidential.
If the AccessKey pair of your Alibaba Cloud account is leaked, your resources are exposed to potential risks. We recommend that you use the AccessKey pair of a RAM user to call operations. This prevents the AccessKey pair of your Alibaba Cloud account from being leaked.
Log on to the Alibaba Cloud Management Console by using your Alibaba Cloud account.
Move the pointer over the profile picture in the upper-right corner of the page that appears and click AccessKey Management.
In the Note dialog box, click Use Current AccessKey Pair or Use AccessKey Pair of RAM User.
Obtain the AccessKey pair of the Alibaba Cloud account
Click Use Current AccessKey Pair.
On the AccessKey Management page, click Create AccessKey.
In the View Secret dialog box, view the AccessKey ID and AccessKey secret. You can click Download CSV File to download the AccessKey pair or click Copy to copy the AccessKey pair.
Obtain the AccessKey pair of a RAM user
Click Use AccessKey Pair of RAM User.
On the Users page of the RAM console, find the RAM user whose AccessKey pair you want to obtain.Note
If you do not have a RAM user, you must first create a RAM user. For more information, see Create a RAM user.
Click the name of the RAM user in the User Logon Name/Display Name column.
In the User AccessKeys section of the Authentication tab, click Create AccessKey.
In the View Secret dialog box, view the AccessKey ID and AccessKey secret. You can click Download CSV File to download the AccessKey pair or click Copy to copy the AccessKey pair.Note
The AccessKey secret is displayed only after you create an AccessKey pair. You cannot query the AccessKey secret in subsequent operations. Therefore, you must back up your AccessKey secret.
If your AccessKey pair is leaked or lost, you must create another AccessKey pair. You can create a maximum of two AccessKey pairs for each RAM user.