Skip to main content

Onboarding a Huawei account

To start integrating a Huawei account, follow these steps:

  1. Under Scan Configuration, select Others.

    CSPM_Huawei_account_integration_Others_464405_en.png

  2. Select a cloud provider to onboard.

    CSPM_Huawei_account_integration_select_cloud_464405_en.png

Create an IAM Custom Policy at the Global Scope

To create an IAM Custom Policy at the Global Scope, follow these steps:

  1. Open a new browser tab or window and log in to your Huawei console with an administrator account.

  2. Navigate to IAM Permissions > Policies/Roles.

  3. Click Create Custom Policy.

  4. Under Policy Name, type in a descriptive name, such as GravityZoneScannerGlobeScopePolicy.

  5. Under the Policy View, select the JSON tab.

  6. Go back to the Scan Configuration browser page, access the JSON link and copy the entire parameter.

  7. Go back to the JSON tab and paste it in the Policy Content.

  8. Click OK.

Create an IAM User Group with the custom policy assigned

To create an IAM User Group with the custom policy assigned, follow these steps:

  1. Navigate to IAM > User Grops service.

  2. Click Create User Group.

    CSPM_Huawei_create_user_group_464405_en.png

  3. In the Name field, enter an appropriate name such as GravityzoneScannerGroup.

  4. Click OK.

  5. Click the newly created group from the list of User Groups.

  6. From the Permissions tab, click Authorize.

  7. In the Authorize User Group page, select the custom policy created above.

    CSPM_Huawei_authorize_user_group_464405_en.png

  8. Click Next.

  9. Under Scope, select Global Services.

  10. Click OK.

    A pop up window will inform you that the selected permissions will take effect after 15 to 30 minutes.

  11. Click Finish.

    CSPM_Huawei_finish_464405_en.png

    The new User Group with the custom policy assigned is now available under the Permissions tab.

  12. From the Permissions tab, click again Authorize and select:

    • Managed policies Tenant Guest

    • LTS ReadOnlyAccess

  13. Click Next.

  14. Under Scope, select All resources.

    CSPM_Huawei_all_resources_464405_en.png

  15. Click OK.

    A pop up window will inform you that the selected permissions will take effect after 15 to 30 minutes.

  16. Click Finish.

    CSPM_Huawei_finish2_464405_en.png

Create an IAM User with programmatic access

To create an IAM User with programmatic access, follow these steps:

  1. Navigate to IAM > Users page.

  2. Click Create User.

  3. In the User Details section, enter an appropriate name such as GravityzoneScannerSystemUser.

  4. In the Access Type section, select Programmatic Access.

  5. In the Credential Type section, select Access Key.

    CSPM_Huawei_create_user_464405_en.png

  6. Click Next.

  7. Select the user group created above.

    CSPM_Huawei_select_user_group_464405_en.png

  8. Click Create.

    A pop up window will inform you download the Access Key.

  9. Click OK.

  10. Copy the Access Key Id and the Secret Access Key from the downloaded file.

  11. Go back to the Scan Configuration browser page and paste the values copied at step 10.

  12. Open My Credentials page.

  13. Copy the Account ID and Account name.

  14. Go back to the Scan Configuration browser page and paste the values copied at step 13.

  15. Click Add account.

In this section: