This topic describes permission management measures for Nacos instances, including Nacos client authentication and fine-grained authentication in registries and configuration centers. This topic also covers the support for authentication, encryption, and decryption features.
Nacos client authentication
You can enable the authentication feature for Nacos instances in Microservices Engine (MSE). MSE Nacos instances support multiple methods to initialize access credential providers. You can select the method that best fits the authentication and authorization requirements of your business scenarios. For more information, see Configure access credentials on the client.
Fine-grained authentication in registries
Nacos registries of MSE allow you to configure access permissions at the level of instances, namespaces, groups, and service names. You can create a policy to configure specific permissions. For more information, see Fine-grained authentication in registries.
Fine-grained authentication in configuration centers
Nacos configuration centers of MSE allow you to configure access permissions based on instances, namespaces, groups, and data IDs. This prevents malicious users from obtaining or modifying configurations of an instance. Specific permissions can be configured by creating a policy. For more information, see Fine-grained authentication in configuration centers.
Authentication, encryption, and decryption supported by the Nacos client
Microservices Registry Professional Edition provides the authentication, encryption, and decryption deatures. The specific features supported by the Nacos client vary depending on its version. For more information, see Nacos client versions supported for authentication, encryption, and decryption.