All Products
Search

This Product

    Enterprise Distributed Application Service:Manage RAM users

    Document Center

    Enterprise Distributed Application Service:Manage RAM users

    Last Updated:Mar 10, 2026

    Enterprise Distributed Application Service (EDAS) uses the Alibaba Cloud Resource Access Management (RAM) account system. Instead of sharing your AccessKey pair, create RAM users with only the permissions each team member needs.

    How RAM users work

    RAM users let you assign separate identities with specific permissions to each team member. The Alibaba Cloud account controls what each RAM user can do, similar to how Linux user permissions work.

    The following table lists common role examples:

    RolePermissions
    Application administratorCreate, start, query, and delete applications
    Operations administratorView resources, check application monitoring data, manage alert rules, and manage throttling and degradation rules

    Key facts:

    • RAM users are created under an Alibaba Cloud account in the RAM console. Validity check is not required for RAM users.

    • Each RAM user name must be unique within the Alibaba Cloud account.

    • RAM users log on through a dedicated portal at https://signin.alibabacloud.com, not through the main Alibaba Cloud logon page.

    Log on to the EDAS console as a RAM user

    To access the EDAS console as a RAM user, get the RAM user logon URL from the Alibaba Cloud account owner, then log on with your RAM user credentials.

    Prerequisites

    Before you begin, make sure that you have:

    • An Alibaba Cloud account with RAM users created

    • The RAM user logon name and password

    Procedure

    1. Log on to the RAM console with your Alibaba Cloud account.

    2. On the Overview page, find the Account Management section, and click the URL below RAM user logon.

      Note

      The RAM user logon URL is unique to each Alibaba Cloud account. Share this URL with your RAM users so they can log on.

    3. On the RAM User Logon page, enter the logon name of the RAM user and click Next.

    4. Enter the logon password and click Log on.

      Note

      If Required at Next Logon is selected for Password Reset, the RAM user must reset their password after the first logon.

    5. After logon, open the EDAS console.

    Revoke a permission from a RAM user

    Remove a policy from a RAM user when that access is no longer needed.

    1. Log on to the RAM console with your Alibaba Cloud account.

    2. In the left-side navigation pane, choose Identities > Users.

    3. On the Users page, click the username of the RAM user.

    4. Click the Permissions tab, find the policy to remove, and click Revoke Permission in the Actions column.

    5. In the Revoke Permission confirmation dialog, click Revoke Permission.

    Delete a RAM user

    For detailed steps, see Delete a RAM user.

    See also

    • RAM documentation -- Create RAM users, configure logon settings, and manage access policies.