Last updated: 2020-02-26 17:59:11PDF
Refined Access Control for Resources
Resource management permissions can be granted to sub-users.
Scenario: You can create users or roles in CAM and assign them separate security certificates (console login passwords, TencentCloud API keys, etc.) Or request temporary security certificates for them for access to Tencent Cloud resources. You can also manage the permissions to control what actions users and roles can perform and what resources they can access.
Single Sign-on to Tencent Cloud
Already have the external identity of Tencent Cloud, and these users need Access Tencent Cloud resources.
Scenario: you can use your existing authentication system through CAM to provide Tencent Cloud services and resources to employees and services, Access Permission. Tencent Cloud supports joint authentication based on SAML 2.0 (Security Assertion Markup Language 2.0) to realize the interworking with the enterprise private network account. Click here Learn more.
Multi-factor Authentication for Improved Account Security
Sub-users need to be provided with an additional layer of protection in addition to their usernames and passwords.
Scenario: three verification methods are supported: Wechat scan code verification, MFA Device verification (divided into hardware MFA Device verification and virtual MFA Device verification), and mobile verification code verification. Depending on the configuration, a user may be required to scan a QR code with WeChat or enter a valid authentication code to verify their identity and device environment before logging in or performing sensitive operations.