This document describes how to create, enable/disable, delete, and view API keys for sub-users and collaborators.
Log in to the CAM Console and go to User List. Find the sub-user or collaborator that needs to be configured and click Username to enter the user details page.
You can create an API key for a sub-user/collaborator. After the API key is created, the sub-user/collaborator can use APIs, SDKs, or other development tools to manage the resources under the root account within the scope of the configured permissions.
- Each sub-user/collaborator can have at most two API keys.
- An API key is an important credential for creating TencentCloud API requests. For the security of your assets and services, please keep the keys private, change them regularly, and delete old keys promptly after creating new ones.
You can view and copy the SecretId
and SecretKey
information of a sub-user/collaborator API key. The sub-user/collaborator can use the SecretId
and SecretKey
to use APIs, SDKs, or other development tools to manage resources under the root account within the scope of the configured permissions.
SecretId
and SecretKey
information of the API key. An API key is an important credential for creating TencentCloud API requests. For the security of your assets and services, please keep the keys private, change them regularly, and delete old keys promptly after creating new ones.
- SecretId: this can be directly viewed in the "Key" column. Click
to copy and save it.
- SecretKey: click Show in the "Key" column. You will be able to view it after being authenticated. Click
to copy and save it.
You can disable an API key of a sub-user/collaborator. Please do so with caution as Tencent Cloud will block all requests that use the API key after it is disabled.
You can click Enable in the "Operation" column to enable the key. After the key is enabled, the sub-account/collaborator can use APIs, SDKs, or other development tools to manage the resources under the root account within the scope of the configured permissions.
Please note that an API key cannot be recovered once deleted.
For more information on how to query sub-account information through the SecretId
of an access key, please see Searching for Sub-users with Search Box and Searching for Collaborators with Search Box.
Was this page helpful?