An Alibaba Cloud AccessKey pair is a secure identity credential that you can use to access your Alibaba Cloud resources by calling API operations. You can use the AccessKey pair to sign API requests to pass the security authentication. This topic describes how to create and obtain an AccessKey pair.
Background information
An AccessKey pair consists of an AccessKey ID and an AccessKey secret.
- The AccessKey ID is used to identify a user.
- The AccessKey secret is used to verify the identity of the user. You must keep your AccessKey secret strictly confidential.
Warning
- If the AccessKey pair of your Alibaba Cloud account is leaked, your cloud resources are exposed to high risks. We recommend that you use a RAM user to call API operations. This minimizes the risk in which the AccessKey pair of your Alibaba Cloud account is leaked.
- If your AccessKey pair is leaked, we recommend that you immediately delete it and create another AccessKey pair.
Procedure
- Log on to the Alibaba Cloud Management Console by using your Alibaba Cloud account.
- Move the pointer over the profile picture in the upper-right corner of the page that appears and click AccessKey Management.
- In the Note dialog box, click Use Current AccessKey Pair or Use AccessKey Pair of RAM User.
- Obtain the AccessKey pair of the Alibaba Cloud account
- Click Use Current AccessKey Pair.
- On the AccessKey Pair page, click Create AccessKey.
- In the View Secret dialog box, view the AccessKey ID and AccessKey secret. You can click Download CSV File to download the AccessKey pair or click Copy to copy the AccessKey pair.
- Obtain the AccessKey pair of a RAM user
- Click Use AccessKey Pair of RAM User. Then, you are redirected to the Users page of the RAM console.
- On the Users page of the RAM console, find the RAM user whose AccessKey pair you want to obtain. Note If you do not have a RAM user, create one first. For more information, see Create a RAM user.
- Click the name of the RAM user in the User Logon Name/Display Name column.
- In the User AccessKeys section of the Authentication tab, click Create AccessKey.
- In the View Secret dialog box, view the AccessKey ID and AccessKey secret. You can click Download CSV File to download the AccessKey pair or click Copy to copy the AccessKey pair. Note
- An AccessKey secret is displayed only after you click Create AccessKey. You cannot query the AccessKey secret in subsequent operations. Therefore, you must back up your AccessKey secret.
- If your AccessKey pair is leaked or lost, you must create another AccessKey pair. You can create a maximum of two AccessKey pairs for each RAM user.
- Obtain the AccessKey pair of the Alibaba Cloud account