How to Authorize TLS Credentials to an IAM Account¶

Background¶

This guide walks you through creating an IAM account and authorizing it from scratch. If you have already performed these steps before, you can skip them.

Steps¶

1. On the TrueWatch Bind Volcengine TLS External Index page, click to download the authorization file. Open it and copy the JSON content for backup; you will need it later.

2. Log in to your main Volcengine account and complete real-name verification.

Note: If no prompt appears, it means you have already completed the verification.

1. Click on the avatar in the top-right corner, then select API Access Key.

1. Click Create Key to create a sub-user.

1. Create a user either by using the current username or inviting other accounts to create one.

The following image shows creation via username:

1. After entering the required information for the sub-user, click Next.

Note: In the login settings, check "Programmatic Access".

1. In the permission settings, do not select any permission policies; choose "Global" for the scope of effect.

1. After reviewing and verifying your phone number, you can view and download the AK (Access Key ID) and SK (Secret Access Key) information.

1. Click Policy Management and create a custom policy.

1. Click JSON Editor, enter the policy name, paste the JSON copied in step 1 here, and click Submit.

1. After successful submission, click Add Authorization to assign this permission policy to the requested sub-user.

2. Enable log service for the Volcengine account.