Application permission management

Manage permissions on namespaces

If no namespace exists in your Alibaba Cloud account after you activate SchedulerX and access a region, the system automatically creates a default namespace. You can change the name of the default namespace or create a new one.

Namespaces are typically used to isolate environments. Different RAM users may be responsible for different applications that run in the same environment. Therefore, SchedulerX does not isolate namespace permissions for each RAM user. All RAM users that belong to the same Alibaba Cloud account can view all namespaces created within that account, regardless of who created them. For example, if an Alibaba Cloud account PrimaryAccount-A has two RAM users, subAccount-B and subAccount-C, any namespace created by one of these three accounts is visible to the other two.

Manage permissions on applications

Different RAM users are typically responsible for different applications. An application created by a RAM user is not visible to other RAM users, but it is visible to the parent Alibaba Cloud account. The Alibaba Cloud account can grant other RAM users access to the application. A RAM user can also grant other RAM users access to their applications.

1. Log on to the EDAS console.

2. In the left-side navigation pane, click Task Scheduling (SchedulerX).

3. In the top navigation bar, select a region.

4. In the left-side navigation pane, click Application Management.

5. On the Application Management page, select a namespace from the list next to Namespace.

6. On the Application Management page, find the target application and click Authorize in the Actions column.

7. On the Authorization Management page, select the RAM users that you want to authorize from the Unauthorized list, click to add them to the Authorized list, and then click OK.