All Products
Search

This Product

    Hologres:Data security

    Document Center

    Hologres:Data security

    Last Updated:Feb 04, 2026

    You can use the Hologres console to configure data security features, such as SSL encryption in transit and HoloWeb cross-account logon.

    Prerequisites

    You must have a purchased Hologres instance. For more information, see Purchase a Hologres instance.

    SSL encryption in transit

    Hologres supports SSL encryption in transit. You can enable or disable this feature. For more information, see Encryption in transit.

    • If you enable SSL encryption in transit, clients can connect to Hologres over SSL. When a client connects to Hologres, you must explicitly specify whether to use an encrypted connection.

    • If you disable SSL encryption in transit, only non-SSL connections are supported.

    Important

    Enabling or disabling SSL encryption in transit requires an instance restart. Proceed with caution. This feature is disabled by default.

    Follow these steps:

    1. Log on to the Hologres console and select a region in the upper-left corner.

    2. In the navigation pane on the left, click Instances and then click the ID of the destination instance.

    3. On the instance details page, click Data Security.

    4. On the Data Security page, in the SSL Encryption section, turn on the SSL Encryption switch.

    5. In the Enable SSL Encryption dialog box, click Enable SSL encryption.

    HoloWeb cross-account logon

    You can configure whether to allow cross-account logon to the current instance from HoloWeb.

    • Enabled: Other Alibaba Cloud accounts and their RAM users can log on to this instance from HoloWeb.

    • Disabled: Only RAM users that belong to the current Alibaba Cloud account can log on to this instance from HoloWeb, provided they have the required logon permissions. Other Alibaba Cloud accounts and their RAM users cannot log on to this instance from HoloWeb.

    Note

    This feature is disabled by default for new instances. This means that cross-account logon from HoloWeb is not allowed for the instance.

    Step 1: Enable HoloWeb cross-account logon for the destination instance

    In your current account (for example, Account A), enable the HoloWeb cross-account logon feature for the destination instance.

    1. Log on to the Hologres console and select a region in the upper-left corner.

    2. In the navigation pane on the left, click Instances and then click the ID of the destination instance.

    3. On the instance details page, click Data Security.

    4. On the Data Security page, in the HoloWeb Logon Settings section, turn on the HoloWeb Cross-account Logon switch.

    5. In the Enable HoloWeb Cross-account Logon dialog box, click Enable.

    Step 2: Use another account to perform a cross-account logon from HoloWeb

    After you enable HoloWeb cross-account logon for the instance in Account A, you can use another Alibaba Cloud account (for example, Account B) and its RAM users to log on to the instance from HoloWeb.

    1. Use Account B to log on to the Hologres console and select a region in the upper-left corner.

    2. In the navigation pane on the left, click Go to HoloWeb to open the HoloWeb developer page.

    3. Click Metadata Management > Instances.

    4. In the Instances dialog box, in the Instance Information section, configure the following parameters:

      Note

      You do not need to configure the parameters in the Search for Instance section of the Instances dialog box.

      Parameter name

      Description

      Name

      A custom connection name.

      Domain Name

      The network domain name of the Hologres instance in Account A for which HoloWeb cross-account logon is enabled.

      You can use Account A to go to the instance details page in the Hologres console and obtain the domain name from the Network Information section.

      Port

      The network port of the Hologres instance in Account A for which HoloWeb cross-account logon is enabled.

      You can use Account A to go to the instance details page in the Hologres console and obtain the port number from the Network Information section.

      Logon Method

      Select Password Logon.

      Account

      The AccessKey ID of Account A.

      You can click AccessKey Management to obtain the AccessKey ID.

      Password

      The AccessKey secret of Account A.

      Test Connectivity

      Check whether the connection is successful:

      • The test is successful. indicates that the connection is successful.

      • The test failed. indicates that the connection failed.

      Log on after connection

      You can select whether to log on to the instance.

      • Yes: The instance is logged on and displayed in the Logged-on Instances list on the left.

      • No: The instance is displayed in the Not Logged-on Instances list on the left.

    5. After the connection is successful, click the icon next to Instance Management to refresh the instance list. Then, click Logged-on Instances to view the databases and tables of the instance in Account A and perform table operations.