This topic describes how to create a Resource Access Management (RAM) user and authorize the RAM user to use OpenSearch Retrieval Engine Edition. For example, you can grant a RAM user the permissions to create instances or view monitoring metrics. OpenSearch Retrieval Engine Edition supports system and custom policies.
Create a RAM user
A RAM user is an entity that you create in RAM to represent an O&M engineer or application. After you create a RAM user and grant the relevant permissions to the RAM user, the RAM user can access the specified Alibaba Cloud resources.
For more information about how to create a RAM user, see Create a RAM user.
Grant permissions to a RAM user
After you grant permissions to a RAM user, the RAM user can access the relevant OpenSearch Retrieval Engine Edition resources. You can attach system policies or custom policies to the RAM user. For more information, see Grant permissions to a RAM user and Create custom policies.
Common policies
The system policy that contains management permissions on OpenSearch Retrieval Engine Edition.
AliyunSearchEngineFullAccess
The system policy that contains read-only permissions on OpenSearch Retrieval Engine Edition.
AliyunSearchEngineReadOnlyAccess
The system policies that contain the permissions to view and configure alerting settings.
AliyunElasticsearchReadOnlyAccess and AliyunElasticsearchFullAccess