Alibaba Cloud RAM — Part 3: Usage Scenarios

Usage Scenarios | Alibaba Cloud RAM

Scenario 1: Enterprise User Account Management | Permission Control

  • Create custom policies
  • Grant permissions by binding one or more policies to a user or user groups.
  • Create access keys and credentials
  • Provide access to one or multiple cloud resources
  • Provide time-based or location-based access rules
  • Bind the primary account to an MFA device
  • Configure the MFA independently

Scenario 2: Inter-Enterprise Resource and Access Management

Scenario 3: Mobile Apps and Temporary Access Management

  • To access a resource, the mobile application will request an STS-token from the app server.
  • The Alibaba Cloud RAM role is defined, and the necessary permissions have been granted.
  • A user is associated with this RAM role for the application server access.
  • The app server calls the STS API to obtain the token.
  • The mobile application uses the token to upload or download data from Alibaba Cloud OSS

Scenario 4: Authorizing Applications | Alibaba Cloud RAM

Wrapping Up

Upcoming Articles

  1. Alibaba Cloud RAM — How to Do What?
  2. Alibaba Cloud Firewall — An Overview

Original Source:



Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Alibaba Cloud

Alibaba Cloud

Follow me to keep abreast with the latest technology news, industry insights, and developer trends. Alibaba Cloud website: