Preset Policies

Last updated: 2021-02-25 16:11:36

    Note:

    This document describes the management of access to TRTC. For access management of other Tencent Cloud services, see CAM-Enabled Products.

    TRTC access management works by associating permission policies with sub-accounts or granting policies to sub-accounts. The preset policies in the console allow you to perform some simple authorization. For more sophisticated authorization, see Custom Policies.

    TRTC offers the following preset policies currently.

    Policy Description
    QcloudTRTCFullAccess Read-and-write permission
    QcloudTRTCReadonlyAccess Read-only permission

    Examples of Using Preset Policies

    Creating a sub-account with the read-and-write permission

    1. Go to the User List page of the CAM console using a Tencent Cloud root account and click Create User.

    2. On the "Create User" page, click Custom Create to go to the "Create Sub-user" page.

      Note:

      Finish the steps before User Permissions as instructed in Creating a Custom Sub-user.

    3. On the User Permissions page:

      1. Search for and check the preset policy QcloudTRTCFullAccess.
      2. Click Next.
    4. In the Review step, click Complete. After the sub-user is created successfully, download the login link and security credential file and store them properly. They contain the following information.

      Information Source Use Storage Required
      Login link Copied from the console page Facilitates console login. Root account information is not required for login via the link. No
      User ID Security credential file in CSV format Required for console login Yes
      Password Security credential file in CSV format Required for console login Yes
      SecretId Security credential file in CSV format Required for server API calling. For more information, seeAccess Key Yes
      SecretKey Security credential file in CSV format Required for server API calling. For more information, seeAccess Key Yes
    5. Provide the login link and security credentials to the party you want to authorize access, who will be able to use the sub-account to perform all kinds of TRTC operations, including visiting the TRTC console, calling TRTC server APIs, etc.

    Granting read-and-write permission to existing sub-account

    1. Go to the User List of the CAM console using a Tencent Cloud root account and click the target sub-account.
    2. On the User Details page, click Add Policy under the Permissions tab. If the sub-account already has permissions, click Associate Policy.
    3. Click Select policies from the policy list, search for and check the preset policy QcloudTRTCFullAccess, and complete the authorization as prompted.

    Revoke the read-and-write permission of a sub-account

    1. Go to the User List of the CAM console using a Tencent Cloud root account and click the target sub-account.
    2. On the User Details page, find the preset policy QcloudTRTCFullAccess under the Permission tab, click Unassociate on the right, and complete the deauthorization as prompted.