Requirements
The provider supports working with only one disk in the virtual machine template. Make sure the template contains only one disk.
To ensure proper operation of Deckhouse Kubernetes Platform (DKP) with Huawei Cloud, make sure of the following:
- The
cloud-init
package is installed on the virtual machines. - After the VMs start, the following services must be active:
cloud-config.service
cloud-final.service
cloud-init.service
Accessing the Huawei Cloud API
DKP uses the Huawei Cloud API to manage resources. To configure access, you need to create an IAM user and assign the necessary permissions.
Creating a user group
To create a user group and assign policies, follow these steps:
- Go to the Identity and Access Management (IAM) section.
- Open the User Groups tab and click Create User Group.
- Specify a group name (for example,
deckhouse
) and click OK. - Select the created group and go to the Permissions tab.
- Click Authorize and assign the following policies:
ECS Admin
VPC Administrator
NAT Admin
ELB FullAccess
DEW KeypairFullAccess
- Confirm your selections by clicking Next, then OK, and finalize with Finish.
Creating an IAM user
To create an IAM user, follow these steps:
- Go to the Users tab and click Create User.
- Enter a username (for example,
deckhouse
). - Under Access type, select Programmatic access, and ensure that Management console access is disabled.
- Under Credential Type, choose Access key.
- Click Next, select the previously created group, and then click Create.
- Download the Access Key ID and Secret Access Key. These credentials are required to access the Huawei Cloud API and cannot be recovered later.
Make sure the saved keys are securely stored, as they are required to access the cloud API.
JSON policies
Below are the policy contents in JSON format: