Platform For AI:Create and manage a workspace

Configure computing resources

View and associate computing resources.

Configure members and roles

Add members and assign roles when multiple users need workspace access. View role-to-permission mapping to assign appropriate roles.

• Add members/roles

  

  You can assign multiple roles to a single RAM user. Available roles:

  Role type	Description
  Workspace Member	Basic workspace roles: Administrator: Manage workspace members, resource groups, and workspace assets. Algorithm Developer: Perform development and model training. Algorithm O&M Engineer: Manage task priority, model deployment, and service monitoring. Labeling Administrator: Manage intelligent labeling operations. Visitor: View workspace assets (read-only).
  MaxCompute development	MaxCompute development role (developer role in DataWorks). Grants permissions for MaxCompute data development. Assign to RAM users who submit PAI tasks to MaxCompute.
  Custom workspace role	Add a custom role: Permission levels: No Permissions: No access to product module. Read-only: View own resources and public resources in product module. Modify/Execute: Edit and run own resources in product module. Full Access: Manage all resources in product module.

• Modify member roles

  

  Member and role rules:

  • Each member must have at least one role.

  • You cannot delete the Owner role. The Alibaba Cloud account or RAM user that creates the workspace automatically becomes Owner and can manage workspace members, resource groups, and workspace assets.

  • PAI and DataWorks workspaces are interconnected. Administrator, Visitor, and Developer roles are shared between them. When you remove a member's Administrator, Visitor, or Developer role in PAI and it is their last role in the corresponding DataWorks workspace, DataWorks automatically removes the member. This may trigger an entity transfer.

Configure resource scheduling

PAI provides workspace-level resource management and scheduling. Administrators can configure resource scheduling based on business requirements. For more information, see Configure resource policies.

Configure event notifications

Configure event notifications to monitor DLC Jobs, Pipeline Jobs, and DSW instances status, or trigger downstream operations when Model status changes. For more information, see Event notification configuration.

Configure storage path

Configure default storage path for workspace.

• Default storage location for workspace. Stores temporary data and models generated during model training and other tasks.

• When Workflow Data Storage path is set in Designer, that path takes precedence when a pipeline runs.

Configure SLS

Configure log forwarding for DSW instances and DLC jobs to Log Service (SLS) for custom analysis.

General configurations

General configuration options for workspace. Restart instances after toggling a switch.

DLC configuration:

• Access node containers: Controls whether users can enter compute node containers of DLC jobs for debugging or troubleshooting. When enabled, authorized users can access containers through a terminal.

DSW configurations:

• Log on to instances from public network using SSH: Whether users can connect to DSW instances over internet through SSH.

• Open instances from public network: Whether users can access DSW instances over internet.

• Limit public network access speed: Whether to limit network speed when DSW instances access internet through a dedicated NAT gateway. Prevents individual instances from consuming excessive bandwidth and maintains stability of shared resources.