- About Us
-
Secure, unlimited storage to ensures efficiency as well as high and continuous data access demand.
Virtual server integration for 3D Rendering, AI or ML
Enhance application capacity and availability.
Access to an all-inclusive stack for AI development, driven by NVIDIA’s powerful technology!
FPT Web Application Firewall provides powerful protection for web applications
Advanced virtual server with rapid scalability
Backup and restore data instantly, securely and maintain data integrity.
Advanced virtual server with rapid scalability
Access to an all-inclusive stack for AI development, driven by NVIDIA’s powerful technology!
Enhance application capacity and availability.
Backup and restore data instantly, securely and maintain data integrity.
Recovery, ensuring quick operation for the business after all incidents and disasters.
Diverse throughput and capacity to meet various business workloads.
Secure, unlimited storage to ensures efficiency as well as high and continuous data access demand.
FPT Web Application Firewall provides powerful protection for web applications
Intelligent and Comprehensive Virtual Web Application Firewall - Security Collaboration between FPT Cloud and Penta Security.
The Next generation firewall security service
Easily store, manage, deploy, and secure Container images
Safe, secure, stable, high-performance Kubernetes platform
Provided as a service to deploy, monitor, backup, restore, and scale MongoDB databases on cloud.
Provided as a service to deploy, monitor, backup, restore, and scale Redis databases on cloud.
Provided as a service to deploy, monitor, backup, restore, and scale PostgreSQL databases on cloud.
System Monitoring Solution anywhere, anytime, anyplatform
Helps reduce operational costs by up to 40% compared to traditional BI solutions, while improving efficiency through optimized resource usage and infrastructure scaling. - Pricing
- Partner
- Event
Managed – FPT Database Engine
-
Concepts
-
Initial Setup
-
Tutorials
-
Peformance & Benchmark
-
Troubleshooting
-
FAQs
-
Glossary
-
Identity and Access Management (IAM) overview
To ensure security, compliance, and separation of duties in a cloud environment, FPT Cloud uses an Identity and Access Management (IAM) module to control who can do what, and on which resources.
IAM enables centralized permission management across users, groups, and DBaaS components in the FPT Cloud Portal, enforcing the principle of least privilege by assigning roles to users through groups within a Tenant and VPC scope.
The least privilege principle: assign only the minimum necessary rights to perform tasks. For instance, grant viewing access only if no configuration or delete actions are required.
FPT Database Engine – Permission model
To perform database provisioning, operation, and management tasks, users must be granted the appropriate IAM permissions. Each action within the FPT Database Engine service is governed by specific permissions. If a user is not assigned a required permission, the corresponding operation will not be available to that user.
Permissions for the FPT Database Engine service are organized and grouped by functional domains, as described below:
1. FPT Database Engine service management permissions
| Permission | Action Type | Description |
|---|---|---|
| manageDatabase:ProvisionBackend | Create | Allows activating the FPT Database Engine service within a VPC. |
| manageDatabase:DeactiveBackend | Delete | Allows deactivating the FPT Database Engine service within a VPC. |
2. Database management permissions
| Permission | Action Type | Description |
|---|---|---|
| manageDatabase:List | View | Allows viewing the list of database clusters. |
| manageDatabase:Create | Create | Allows provisioning new database clusters. |
| manageDatabase:View | View | Allows viewing database cluster details. |
| manageDatabase:Management | Edit | Allows operational actions such as start, stop, and restart. |
| manageDatabase:UpdateResource | Edit | Allows updating database cluster resources such as CPU, memory, and storage. |
| manageDatabase:Configuration | Edit | Allows modifying database cluster configuration such as parameters, and scaling configurations. |
| FDE:hide_admin_pw | View | Allows blocking to view the database administrator password. |
| manageDatabase:Delete | Delete | Allows deleting a database clusters. |
3. Backup & Restore permissions
| Permission | Action Type | Description |
|---|---|---|
| manageDatabase:ListBackup | View | Allows viewing backup service information. |
| manageDatabase:EnableBackup | Create | Allows enabling backup and restore for a database cluster. |
| manageDatabase:DeleteBackup | Edit | Allows disabling backup and restore for a database cluster. |
| manageDatabase:CreateJobBackup | Create | Allows creating backup jobs for a database cluster. |
| manageDatabase:ViewJobBackup | View | Allows viewing backup job details of a database cluster. |
| manageDatabase:RunNowJobBackup | Create | Allows triggering an on-demand backup snapshot for a database cluster. |
| manageDatabase:EditJobBackup | Edit | Allows editing backup jobs of a database cluster. |
| manageDatabase:DeleteJobBackup | Delete | Allows deleting backup jobs of a database cluster. |
| manageDatabase:ListRestore | View | Allows viewing available restore points. |
| manageDatabase:Restore | Create | Allows restoring a database cluster from backup or recover to a point in time. |
4. DB Proxy management permissions
| Permission | Action Type | Description |
|---|---|---|
| manageDatabase:ListProxy | View | Allow viewing the database cluster's DB Proxy list. |
| manageDatabase:CreateProxy | Create | Allow creating a new DB proxy for a database cluster in the system. |
| manageDatabase:DeleteProxy | Delete | Allow deleting a DB Proxy for database clusters in the system. |
5. Notification permissions
| Permission | Action Type | Description |
|---|---|---|
| manageDatabase:ListNotification | View | Allows viewing database cluster notification settings. |
| manageDatabase:CreateNotification | Create | Allows enabling notifications for a database cluster. |
| manageDatabase:DeleteNotification | Delete | Allows disabling database cluster notifications. |
6. Monitoring permissions
| Permission | Action Type | Description |
|---|---|---|
| manageDatabase:ListNotification | View | Allows viewing database cluster notification settings. |
7. Reporting permissions
| Permission | Action Type | Description |
|---|---|---|
| manageDatabase:ReportConfig | Edit | Allows configuring and manageing the schedule for receiving database cluster activity reports. |
Configure permissions for the FPT Database Engine service
To configure roles and define user groups, refer to section Role management, and User group management for detailed instructions.