All Products
Search
Document Center

CloudSSO:List of operations by function

Last Updated:Dec 18, 2024
This product(cloudsso/2021-05-15) OpenAPI adopts RPC Signature style. See signature details in Description of the signature mechanism. We have packaged SDKs for common programming languages for developers. Developers can directly call the OpenAPI of this product by downloading the SDK without paying attention to the technical details. If the existing SDK cannot meet the usage requirements, you can connect through the signature mechanism. It will take about 5 working days. Therefore, it is recommended to join our DingTalk service group (78410016550) and sign under the guidance of experts.
Before using the API, you need to prepare your identity account and access key (AccessKey) to effectively access the API through client tools (SDK, CLI, etc.). For details see getAccessKey.

CloudSSO

APITitleDescription
EnableServiceEnableServiceEnables CloudSSO.
DisableServiceDisableServiceDisables CloudSSO.
GetServiceStatusGetServiceStatusQueries the status of CloudSSO.
CreateDirectoryCreateDirectoryCreates a directory.
ListDirectoriesListDirectoriesQueries directories.
GetDirectoryGetDirectoryQueries information about a directory.
GetDirectoryStatisticsGetDirectoryStatisticsQueries the statistics of a directory.
UpdateDirectoryUpdateDirectoryChanges the name of a directory.
DeleteDirectoryDeleteDirectoryDeletes a directory.
EnableDelegateAccountEnableDelegateAccountEnables the delegated administrator account of CloudSSO.
DisableDelegateAccountDisableDelegateAccountDisables the delegated administrator account of CloudSSO.

Users

APITitleDescription
CreateUserCreateUserCreates a user.
ListUsersListUsersQueries users.
GetUserGetUserQueries information about a user.
UpdateUserUpdateUserModifies information about a user.
UpdateUserStatusUpdateUserStatusChanges the status of a user.
DeleteUserDeleteUserDeletes a user.
ResetUserPasswordResetUserPasswordResets the password of a user.
ListMFADevicesForUserListMFADevicesForUserQueries the multi-factor authentication (MFA) devices that are bound to a user. Up to two MFA devices can be bound to a user.
DeleteMFADeviceForUserDeleteMFADeviceForUserUnbinds a multi-factor authentication (MFA) device from a user.
UpdateMFAAuthenticationSettingsUpdateMFAAuthenticationSettingsModifies the multi-factor authentication (MFA) setting of all users.
GetMFAAuthenticationSettingsGetMFAAuthenticationSettingsQueries the multi-factor authentication (MFA) setting of all users.
UpdateUserMFAAuthenticationSettingsUpdateUserMFAAuthenticationSettingsModifies the multi-factor authentication (MFA) setting of a single user.
GetUserMFAAuthenticationSettingsGetUserMFAAuthenticationSettingsQueries the multi-factor authentication (MFA) setting of a single user.
GetMFAAuthenticationSettingInfoGetMFAAuthenticationSettingInfoQueries the multi-factor authentication (MFA) setting of all users.
SetLoginPreferenceSetLoginPreferenceConfigures the logon preference of CloudSSO users.
GetLoginPreferenceGetLoginPreferenceQueries the logon preference of CloudSSO users.
SetPasswordPolicySetPasswordPolicyConfigures a password policy for CloudSSO users.
GetPasswordPolicyGetPasswordPolicyQueries the password policy of CloudSSO users.
GetUserIdGetUserIdQueries the ID of a user in a resource directory by using the ExternalId parameter.

Groups

APITitleDescription
CreateGroupCreateGroupCreates a group.
ListGroupsListGroupsQueries groups.
GetGroupGetGroupQueries information about a group.
UpdateGroupUpdateGroupModifies information about a group.
DeleteGroupDeleteGroupDeletes a group.
AddUserToGroupAddUserToGroupAdds a user to a group.
RemoveUserFromGroupRemoveUserFromGroupRemoves a user from a group.
ListJoinedGroupsForUserListJoinedGroupsForUserQueries the groups to which a user is added.
ListGroupMembersListGroupMembersQueries the users in a group.

SCIM synchronization

APITitleDescription
CreateSCIMServerCredentialCreateSCIMServerCredentialCreates a Cross-domain Identity Management (SCIM) credential.
ListSCIMServerCredentialsListSCIMServerCredentialsQueries Cross-domain Identity Management (SCIM) credentials.
UpdateSCIMServerCredentialStatusUpdateSCIMServerCredentialStatusEnables or disables a Cross-domain Identity Management (SCIM) credential.
DeleteSCIMServerCredentialDeleteSCIMServerCredentialDeletes a Cross-domain Identity Management (SCIM) credential.
SetSCIMSynchronizationStatusSetSCIMSynchronizationStatusEnables or disables Cross-domain Identity Management (SCIM) synchronization.
GetSCIMSynchronizationStatusGetSCIMSynchronizationStatusQueries the status of System for Cross-domain Identity Management (SCIM) synchronization.

SSO logon

APITitleDescription
GetDirectorySAMLServiceProviderInfoGetDirectorySAMLServiceProviderInfoQueries information about a Security Assertion Markup Language (SAML) service provider (SP).
SetExternalSAMLIdentityProviderSetExternalSAMLIdentityProviderConfigures a Security Assertion Markup Language (SAML) identity provider (IdP).
GetExternalSAMLIdentityProviderGetExternalSAMLIdentityProviderQueries the configurations of a Security Assertion Markup Language (SAML) identity provider (IdP).
ClearExternalSAMLIdentityProviderClearExternalSAMLIdentityProviderClears the configurations of a Security Assertion Markup Language (SAML) identity provider (IdP).
AddExternalSAMLIdPCertificateAddExternalSAMLIdPCertificateAdds a Security Assertion Markup Language (SAML) signing certificate.
ListExternalSAMLIdPCertificatesListExternalSAMLIdPCertificatesQueries Security Assertion Markup Language (SAML) signing certificates.
RemoveExternalSAMLIdPCertificateRemoveExternalSAMLIdPCertificateRemoves a Security Assertion Markup Language (SAML) signing certificate.

Access configurations

APITitleDescription
CreateAccessConfigurationCreateAccessConfigurationCreates an access configuration.
ListAccessConfigurationsListAccessConfigurationsQueries access configurations.
GetAccessConfigurationGetAccessConfigurationQueries information about an access configuration.
UpdateAccessConfigurationUpdateAccessConfigurationModifies information about an access configuration.
DeleteAccessConfigurationDeleteAccessConfigurationDeletes an access configuration.
AddPermissionPolicyToAccessConfigurationAddPermissionPolicyToAccessConfigurationAdds a policy to an access configuration.
RemovePermissionPolicyFromAccessConfigurationRemovePermissionPolicyFromAccessConfigurationRemoves a policy from an access configuration.
UpdateInlinePolicyForAccessConfigurationUpdateInlinePolicyForAccessConfigurationModifies an inline policy that is created for an access configuration.
ListPermissionPoliciesInAccessConfigurationListPermissionPoliciesInAccessConfigurationQueries the policies that are created for an access configuration.

Multi-account authorization

APITitleDescription
ProvisionAccessConfigurationProvisionAccessConfigurationProvisions an access configuration for an account in your resource directory.
DeprovisionAccessConfigurationDeprovisionAccessConfigurationDe-provisions an access configuration from an account in your resource directory.
ListAccessConfigurationProvisioningsListAccessConfigurationProvisioningsQueries the access configurations that are provisioned.
CreateAccessAssignmentCreateAccessAssignmentAssigns access permissions on an account in your resource directory to a user or a group by using an access configuration.
ListAccessAssignmentsListAccessAssignmentsQueries the access permissions that are assigned.
DeleteAccessAssignmentDeleteAccessAssignmentRemoves the access permissions on an account in a resource directory.
ListTasksListTasksQueries asynchronous tasks.
GetTaskGetTaskQueries information about an asynchronous task.
GetTaskStatusGetTaskStatusQueries the status of an asynchronous task.

Manage RAM user synchronization

APITitleDescription
CreateUserProvisioningCreateUserProvisioningCreates a Resource Access Management (RAM) user provisioning.
GetUserProvisioningGetUserProvisioningQueries a Resource Access Management (RAM) user provisioning.
ListUserProvisioningsListUserProvisioningsQueries Resource Access Management (RAM) user provisionings.
UpdateUserProvisioningUpdateUserProvisioningModifies a Resource Access Management (RAM) user provisioning.
DeleteUserProvisioningDeleteUserProvisioningDeletes a Resource Access Management (RAM) user provisioning.
UpdateUserProvisioningConfigurationUpdateUserProvisioningConfigurationModifies the global configurations of a Resource Access Management (RAM) user provisioning.
GetUserProvisioningConfigurationGetUserProvisioningConfigurationQueries the global configurations of a Resource Access Management (RAM) user provisioning.
ListUserProvisioningEventsListUserProvisioningEventsQueries Resource Access Management (RAM) user provisioning events.
GetUserProvisioningEventGetUserProvisioningEventQueries the information about a Resource Access Management (RAM) user provisioning.
DeleteUserProvisioningEventDeleteUserProvisioningEventDeletes a Resource Access Management (RAM) user provisioning event.
RetryUserProvisioningEventRetryUserProvisioningEventRetries a Resource Access Management (RAM) user provisioning event.
GetUserProvisioningStatisticsGetUserProvisioningStatisticsQueries the statistics of a Resource Access Management (RAM) user provisioning.
GetUserProvisioningRdAccountStatisticsGetUserProvisioningRdAccountStatisticsQueries statistics of Resource Access Management (RAM) user provisioning events that are created for the member in a resource directory.

Others (not maintained)

APITitleDescription
SetMFAAuthenticationStatusSetMFAAuthenticationStatusEnables or disables multi-factor authentication (MFA) for users in a directory.
GetMFAAuthenticationStatusGetMFAAuthenticationStatusChecks whether multi-factor authentication (MFA) is enabled for users.