Preset Policies
notice
This document describes the management of access to TRTC. For access management of other Tencent Cloud services, see CAM-Enabled Products.
TRTC access management works by associating permission policies with sub-accounts or granting policies to sub-accounts. The preset policies in the console allow you to perform some simple authorization. For more sophisticated authorization, see Custom Policies.
TRTC offers the following preset policies currently.
Policy | Description |
QcloudTRTCFullAccess | Read-and-write permission |
QcloudTRTCReadonlyAccess | Read-only permission |
Examples of Using Preset Policies
Creating a sub-account with the read-and-write permission
1. Go to the User List page of the CAM console using a Tencent Cloud root account and click Create User.
2. On the displayed page, click Custom Creation to go to the "Create Sub-user" page.
explain
3. On the User Permissions page:
3.1 Search for and check the preset policy
QcloudTRTCFullAccess.3.2 Click Next.
4. In the Review step, click Complete. After the sub-user is created successfully, download the login link and security credential file and store them properly. They contain the following information.
Information | Source | Use | Storage Required |
Login link | Copied from the console page | Facilitates console login. Root account information is not required for login via the link. | No |
User ID | Security credential file in CSV format | Required for console login | Yes |
Password | Security credential file in CSV format | Required for console login | Yes |
SecretId | Security credential file in CSV format | Required for server API calling. For more information, seeAccess Key | Yes |
SecretKey | Security credential file in CSV format | Required for server API calling. For more information, seeAccess Key | Yes |
5. Provide the login link and security credentials to the party you want to authorize access, who will be able to use the sub-account to perform all kinds of TRTC operations, including visiting the TRTC console, calling TRTC server APIs, etc.
Granting read-and-write permission to existing sub-account
1. Go to the User List of the CAM console using a Tencent Cloud root account and click the target sub-account.
2. On the User Details page, click Add under the Permission tab. If the sub-account already has permissions, click Associate Policy.
3. Click Select policies from the policy list, search for and check the preset policy
QcloudTRTCFullAccess, and complete the authorization as prompted.Revoke the read-and-write permission of a sub-account
1. Go to the User List of the CAM console using a Tencent Cloud root account and click the target sub-account.
2. On the User Details page, find the preset policy
QcloudTRTCFullAccess under the Permission tab, click Disassociate on the right, and complete the deauthorization as prompted.
