Enables a resource directory.
Operation description
You can use the current account or a newly created account to enable a resource directory. For more information, see Enable a resource directory.
Debugging
Authorization information
The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:
- Operation: the value that you can use in the Action element to specify the operation on a resource.
- Access level: the access level of each operation. The levels are read, write, and list.
- Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
- For mandatory resource types, indicate with a prefix of * .
- If the permissions cannot be granted at the resource level,
All Resourcesis used in the Resource type column of the operation.
- Condition Key: the condition key that is defined by the cloud service.
- Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.
| Operation | Access level | Resource type | Condition key | Associated operation |
|---|---|---|---|---|
| resourcemanager:EnableResourceDirectory | create | *All Resources * |
| none |
Request parameters
| Parameter | Type | Required | Description | Example |
|---|---|---|---|---|
| MAName | string | No | The name of the newly created account. Specify the name in the | user01@rdadmin.aliyunid.com |
| MASecureMobilePhone | string | No | The mobile phone number that is bound to the newly created account. If you leave this parameter empty, the mobile phone number that is bound to the current account is used. The mobile phone number you specify must be the same as the mobile phone number that you specify when you call the SendVerificationCodeForEnableRD operation to obtain a verification code. Specify the mobile phone number in the Note
Mobile phone numbers in the 86-<Mobile phone number> format in the Chinese mainland are not supported.
| xx-13900001234 |
| VerificationCode | string | No | The verification code. You can call the SendVerificationCodeForEnableRD operation to obtain the verification code. | 123456 |
| EnableMode | string | Yes | The mode in which you enable a resource directory. Valid values:
| CurrentAccount |
| DryRun | boolean | No | Specifies whether to perform only a dry run, without performing the actual request. Valid values:
| false |
Response parameters
Examples
Sample success responses
JSONformat
{
"ResourceDirectory": {
"ResourceDirectoryId": "rd-54****",
"MasterAccountId": "507408460615****",
"MasterAccountName": "alice@example.com",
"RootFolderId": "r-G9****",
"CreateTime": "2021-12-08T02:15:31.744Z"
},
"RequestId": "EC2FE94D-A4A2-51A1-A493-5C273A36C46A"
}Error codes
| HTTP status code | Error code | Error message | Description |
|---|---|---|---|
| 409 | NotSupport.AccountInAnotherResourceDirectory | The specified account is an Alibaba Cloud account or already exists in another resource directory. | - |
| 409 | Invalid.EnterpriseName | You must specify the enterprise name. | No enterprise name is specified for the account. Specify an enterprise name for the account. |
| 409 | EnterpriseRealNameVerificationError | The specified account does not pass enterprise real-name verification. We recommend you first complete enterprise real-name verification for the account. | The account does not pass enterprise real-name verification. Complete the verification for the account first. |
| 409 | EntityAlreadyExists.ResourceDirectory | The resource directory for the account is already enabled. We recommend that you do not enable the resource directory again. | The account has been used to enable a resource directory. Do not use the account to enable a resource directory again. |
| 409 | InvalidParameter.ManagementAccountName.AlreadyUsed | The ManagementAccountName has been used. | The name specified for the management account already exists. Specify a valid name. |
| 409 | Invalid.VerificationCode | The verification code is invalid. | The verification code is invalid. |
| 409 | InvalidParameter.ManagementAccountName | The management account name is in the wrong format. | The format of the name specified for the management account is incorrect. |
| 409 | InvalidParameter.ManagementAccountSecurityInfo | The parameter management account secure mobile phone is invalid. | The format of the mobile phone number specified for security purposes is incorrect. |
| 409 | MissingSecureMobilePhone | Secure mobile phone is missing. | No mobile phone number is specified for security purposes. |
| 409 | MissingSecurityInfo | Security info is missing. | No security information is specified. |
| 409 | NotSupport.Account.Site | The caller is not a China site account, which is not supported. | The account is not registered at the current site. Use an account registered at the current site. |
| 409 | Invalid.AccountType | The specified profile type of account is invalid. | The account type is invalid. Use an enterprise account. |
For a list of error codes, visit the Service error codes.
Change history
| Change time | Summary of changes | Operation |
|---|---|---|
| 2023-12-21 | The Error code has changed. The request parameters of the API has changed | View Change Details |