If you want a RAM user to use the Content Moderation console but not to call the Content Moderation API, you can grant the RAM user only permissions to use the console. After the permissions are granted to the RAM user, the RAM user can perform operations in the console, such as configuring scans for content in Object Storage Service (OSS) and managing scan results. This topic describes how to grant a RAM user the permissions to use only the Content Moderation console.
Prerequisites
Make sure that the RAM user is not granted the Content Moderation management permission AliyunYundunGreenWebFullAccess.
If the RAM user is granted the AliyunYundunGreenWebFullAccess permission, you must first revoke the permission from the RAM user. For more information, see Revoke permissions from a RAM user.
If the RAM user has inherited the AliyunYundunGreenWebFullAccess permission from a RAM user group, you must first revoke the permission from the user group or remove the RAM user from the user group. For more information, see Revoke permissions from a RAM user group and Remove a RAM user from a RAM user group.
Procedure
Log on to the RAM console with an Alibaba Cloud account.
Grant the RAM user the permission to use only the Content Moderation console: AliyunYundunGreenWebConsoleOnlyAccess. For more information, see Grant permissions to the RAM user.
After completing these steps, you can log on to the Content Moderation console as a RAM user to configure scan settings and view the scan results.