Configuration of cloud vendor access credentials
NineData supports cloud vendor's access credential, which is convenient for pulling information such as database instances in the corresponding cloud from the NineData console.
Permission description
Currently, cloud vendors that support configuring access credentials include , , , AWS, , and . The access credentials of each cloud vendor are required to have certain permissions for establishing connections.
| Cloud Vendor | Permission Description |
|---|---|
| Used as the terminal endpoint to create a private network connection for NineData. It queries essential information about cloud servers (ECS), cloud databases (RDS, PolarDB, Redis, ClickHouse, MongoDB, etc.), network products (private network connection, VPC, NAT Gateway, etc.) to establish a point-to-point network connection between NineData server and databases. | |
| Used as the terminal endpoint to create a private network connection for NineData. It queries essential information about cloud servers (CVM), cloud databases (RDS, Redis, MongoDB, TDSQL-C, etc.), network products (private network connection, VPC, etc.) to establish a point-to-point network connection between NineData server and databases. | |
| Used as the terminal endpoint to create a private network connection for NineData. It queries essential information about cloud servers (ECS), cloud databases (RDS, Redis, MongoDB, Gauss DB, etc.), network products (private network connection, VPC, etc.) to establish a point-to-point network connection between NineData server and databases. | |
| AWS | Used as the terminal endpoint to create a private network connection for NineData. It queries essential information about cloud servers (EC2), cloud databases (RDS, Redis, MongoDB, Aurora, Redshift), network products (private network connection, VPC, etc.) to establish a point-to-point network connection between NineData server and databases. |
| Used to query essential information about cloud servers (ECS), cloud databases (MySQL, PostgreSQL, Redis, MongoDB), etc., to establish a network connection between NineData server and databases. | |
| Used to query essential information about cloud servers (BCC, etc.), cloud databases (RDS, Redis, MongoDB), network products (VPC), etc., to establish a point-to-point network connection between NineData server and databases. |
Steps
This chapter only briefly describes the configuration method. For the specific cloud vendor access credential configuration process, please refer to Best Practice in this article.
Log in to NineData console .
In the left navigation bar, click Datasource > Access Credential .
On the Access Credentials page, click Create Credential in the upper right corner .
On the Create Credential page, configure according to the following table.
Parameter Description Name Enter the credential name. In order to facilitate subsequent search and management, please try to use meaningful names. Cloud Vendor Select the name of the cloud vendor whose credentials need to be added. Currently supports Alibaba Cloud , Tencent Cloud , Huawei Cloud , AWS, E Cloud and Baidu Cloud. Type Select the type of credential to be added, which can be added through AccessKey or Role. - AccessKey : The identity of the sender of a request is verified by encrypting the Access Key (AK) and Access Key Secret (SK), which can be obtained in the console of the corresponding cloud vendor.
- Role : To authenticate the sender of a request by using the role name and role ARN, it needs to be created in the console of the corresponding cloud vendor.
Click the Permission Config , copy the content in the Configuration script , and go to the corresponding cloud vendor to configure a custom permission policy.
Click Create Credentials to complete the creation of cloud vendor access credentials.