please select
Features & Server APIs
  • On-Cloud Recording
  • Relay to CDN
  • RTMP Streaming with TRTC
  • Event Callbacks
    • Room&Media Callbacks
    • Relay to CDN Callback
    • Cloud Recording Callback
    • Verify Signature Example
  • Sending and Receiving Messages
  • Access Management
    • Overview
    • Manageable Resources and Actions
    • Preset Policies
    • Custom Policies
  • Enabling Advanced Permission Control
  • How to push stream to TRTC room with OBS WHIP
  • Server APIs
    • API Category
    • History
    • Making API Request
      • Request Structure
      • Common Params
      • Signature v3
      • Signature
      • Responses
    • Room Management APIs
      • SetUserBlockedByStrRoomId
      • SetUserBlocked
      • RemoveUser
      • DismissRoom
      • RemoveUserByStrRoomId
      • DismissRoomByStrRoomId
    • Call Quality Monitoring APIs
      • DescribeRoomInfo
      • DescribeUserEvent
      • DescribeCallDetailInfo
      • DescribeUserInfo
      • DescribeScaleInfo
    • Pull Stream Relay Related Interface
      • StartStreamIngest
      • StopStreamIngest
      • DescribeStreamIngest
    • On-cloud Recording APIs
      • CreateCloudRecording
      • DescribeCloudRecording
      • ModifyCloudRecording
      • DeleteCloudRecording
    • Stream Mixing and Relay APIs
      • UpdatePublishCdnStream
      • StartPublishCdnStream
      • StopPublishCdnStream
    • Usage Statistics APIs
      • DescribeTrtcUsage
      • DescribeRecordingUsage
      • DescribeMixTranscodingUsage
      • DescribeRelayUsage
      • DescribeTrtcRoomUsage
    • Data Types
    • Error Codes
    • Appendix
      • Event ID Mapping Table
Docs Overview/
Features & Server APIs/
Access Management/
Preset Policies/

Preset Policies

notice
This document describes the management of access to TRTC. For access management of other Tencent Cloud services, see CAM-Enabled Products.
TRTC access management works by associating permission policies with sub-accounts or granting policies to sub-accounts. The preset policies in the console allow you to perform some simple authorization. For more sophisticated authorization, see Custom Policies.
TRTC offers the following preset policies currently.
Policy
Description
QcloudTRTCFullAccess
Read-and-write permission
QcloudTRTCReadonlyAccess
Read-only permission

Examples of Using Preset Policies

Creating a sub-account with the read-and-write permission

1. Go to the User List page of the CAM console using a Tencent Cloud root account and click Create User.
2. On the displayed page, click Custom Creation to go to the "Create Sub-user" page.
explain
Finish the steps before User Permissions as instructed in Creating a Custom Sub-user.
3. On the User Permissions page:
3.1 Search for and check the preset policy QcloudTRTCFullAccess.
3.2 Click Next.
4. In the Review step, click Complete. After the sub-user is created successfully, download the login link and security credential file and store them properly. They contain the following information.
Information
Source
Use
Storage Required
Login link
Copied from the console page
Facilitates console login. Root account information is not required for login via the link.
No
User ID
Security credential file in CSV format
Required for console login
Yes
Password
Security credential file in CSV format
Required for console login
Yes
SecretId
Security credential file in CSV format
Required for server API calling. For more information, seeAccess Key
Yes
SecretKey
Security credential file in CSV format
Required for server API calling. For more information, seeAccess Key
Yes
5. Provide the login link and security credentials to the party you want to authorize access, who will be able to use the sub-account to perform all kinds of TRTC operations, including visiting the TRTC console, calling TRTC server APIs, etc.

Granting read-and-write permission to existing sub-account

1. Go to the User List of the CAM console using a Tencent Cloud root account and click the target sub-account.
2. On the User Details page, click Add under the Permission tab. If the sub-account already has permissions, click Associate Policy.
3. Click Select policies from the policy list, search for and check the preset policy QcloudTRTCFullAccess, and complete the authorization as prompted.

Revoke the read-and-write permission of a sub-account

1. Go to the User List of the CAM console using a Tencent Cloud root account and click the target sub-account.
2. On the User Details page, find the preset policy QcloudTRTCFullAccess under the Permission tab, click Disassociate on the right, and complete the deauthorization as prompted.