All Products
Search
Document Center

Secure Access Service Edge:Grant permissions to a RAM user

Last Updated:Dec 12, 2024

Before you use Secure Access Service Edge (SASE), make sure that your Resource Access Management (RAM) user is authorized to access SASE. This topic describes how to grant relevant permissions to a RAM user.

Procedure

  1. Log on to the RAM console as a RAM administrator.

  2. In the left-side navigation pane, choose Permissions > Policies.

  3. On the Policies page, click Create Policy.

  4. On the Create Policy page, click the JSON tab.

  5. On the JSON tab, enter the following code and click OK.

    {
      "Statement": [{
        "Effect": "Allow",
        "Action": "csas:*",
        "Resource": "*"
      }],
      "Version": "1"
    }
  6. Specify the Name and Description fields.

  7. Click OK.

  8. In the left-side navigation pane, choose Identities > Users. On the page that appears, find the RAM user to which you want to grant permissions, and click Add Permissions in the Actions column.

  9. In the Add Permissions panel, select the custom policy that you create, and click Grant permissions.

    After you grant the permissions to a RAM user, O&M personnel of your enterprise can log on to the SASE console as the RAM user to perform O&M operations.