Master & Sub-account and Authorization Management
Master & Sub-account and authorization management: With the help of enterprise project services, multiple users can use eSurfing Cloud accounts with corresponding permissions for access control, and platform capabilities are available for eSurfing Cloud resource management that matches the multi-level organization and project structure.
Users created by an eSurfing Cloud account in "Master & Sub-Account and Authorization Management" are cloud service users with independent identity credentials (passwords and access keys), and they use resources under granted permissions. Sub-users do not own resources and are not charged independently. IAM sub-users' permissions and resources are controlled and paid by their parent accounts.
Access Control
VPC
A Virtual Private Cloud (VPC) is an isolated, private network environment that you apply for on the eSurfing Cloud. You can efficiently manage and utilize cloud resources in a secure, controlled, and isolated network environment. The VPC provides rich features, enabling you to customize network addresses, routing tables, and security groups. In addition, the VPC provides rich network connections. The VPCs can access each other on the cloud, access the Internet, and communicate with the offline IDC through dedicated access or VPN.
Security Group
A security group is a network security protection mechanism used to prevent unauthorized access and protect computer networks against malicious attacks. It is a virtual firewall used to restrict inbound and outbound network traffic. A security group works at the network layer and the transport layer. It checks the source address, destination address, protocol type, and port number of a packet to determine whether the packet is allowed. After a security group is created, users can define various access rules in the security group. After physical servers are added to the security group, they are protected by these access rules.