About Us
Highlights FPT Cloud Server FPT AI Factory FPT Network FPT Cloud Backup & DR FPT Storage FPT Security FPT Container FPT Database FPT Cloud Monitoring FPT Data Suite FPT.AI

Show all

Object Storage

Secure, unlimited storage to ensures efficiency as well as high and continuous data access demand.

GPU Server

Virtual server integration for 3D Rendering, AI or ML

FPT Load Balancing

Enhance application capacity and availability.

FPT AI Factory

Access to an all-inclusive stack for AI development, driven by NVIDIA’s powerful technology!

Cloud WAF

FPT Web Application Firewall provides powerful protection for web applications

Cloud Server

Advanced virtual server with rapid scalability

Backup Service

Backup and restore data instantly, securely and maintain data integrity.

Cloud Server

Advanced virtual server with rapid scalability

FPT AI Factory

Access to an all-inclusive stack for AI development, driven by NVIDIA’s powerful technology!

FPT Load Balancing

Enhance application capacity and availability.

Backup Service

Backup and restore data instantly, securely and maintain data integrity.

Disaster Recovery Service

Recovery, ensuring quick operation for the business after all incidents and disasters.

Block Storage

Diverse throughput and capacity to meet various business workloads.

Object Storage

Secure, unlimited storage to ensures efficiency as well as high and continuous data access demand.

Cloud WAF

FPT Web Application Firewall provides powerful protection for web applications

FPT Cloud WAPPLES

Intelligent and Comprehensive Virtual Web Application Firewall - Security Collaboration between FPT Cloud and Penta Security.

Next-Gen Firewall

The Next generation firewall security service

Container Registry

Easily store, manage, deploy, and secure Container images

Kubernetes Engine

Safe, secure, stable, high-performance Kubernetes platform

FPT Database for MongoDB

Provided as a service to deploy, monitor, backup, restore, and scale MongoDB databases on cloud.

FPT Database for Redis

Provided as a service to deploy, monitor, backup, restore, and scale Redis databases on cloud.

PostgreSQL Database Engine

Provided as a service to deploy, monitor, backup, restore, and scale PostgreSQL databases on cloud.

Monitoring

System Monitoring Solution anywhere, anytime, anyplatform

FPT Data Suite

Helps reduce operational costs by up to 40% compared to traditional BI solutions, while improving efficiency through optimized resource usage and infrastructure scaling.
Pricing
Partner
- Tech news
- White Paper
Event

Service

Cloud Server

FPT AI Factory

FPT Load Balancing

Monitoring

FPT Data Suite

Cloud Insights

ENG

Tiếng Việt English 中文 (中国) 日本語

All documents

Managed – FPT Database Engine

FPT Security

Support

Trellix Customer Guide

Billing

AI Factory Billing

Billing

AI Marketplace

AI Inference

AI Studio

FPT AI Inference

AI Inference

AI Infrastructure

FPT Cloud Server

FPT Monitoring

Incident Management

FPT DevSecOps Services

FPT Integration

FPT Database Engine

Managed – FPT Database Engine

FPT Cloud Backup & DR

FPT Storage

FPT Network

FPT Container

FPT Database Engine Right Management

Updated on 02 Jan 2026

Print: Export: PDF

Identity and Access Management (IAM) Overview

To ensure security, compliance, and separation of duties in a cloud environment, FPT Cloud uses an Identity and Access Management (IAM) module to control who can do what, and on which resources.

IAM enables centralized permission management across users, groups, and DBaaS components in the FPT Cloud Portal, enforcing the principle of least privilege by assigning roles to users through groups within a Tenant and VPC scope.

The least privilege principle: assign only the minimum necessary rights to perform tasks. For instance, grant viewing access only if no configuration or delete actions are required.

FPT Database Engine – Permission Model

To perform database provisioning, operation, and management tasks, users must be granted the appropriate IAM permissions. Each action within the FPT Database Engine service is governed by specific permissions. If a user is not assigned a required permission, the corresponding operation will not be available to that user.

Permissions for the FPT Database Engine service are organized and grouped by functional domains, as described below:

1. Database Engine Service Management Permissions

Permission	Action Type	Description
manageDatabase:ProvisionBackend	Create	Allows activating the FPT Database Engine service within a VPC.
manageDatabase:DeactiveBackend	Delete	Allows deactivating the FPT Database Engine service within a VPC.

2. Database Management Permissions

Permission	Action Type	Description
manageDatabase:List	View	Allows viewing the list of databases.
manageDatabase:Create	Create	Allows provisioning new databases.
manageDatabase:View	View	Allows viewing database details.
manageDatabase:Management	Edit	Allows operational actions such as start, stop, and restart.
manageDatabase:UpdateResource	Edit	Allows updating database resources such as CPU, memory, and storage.
manageDatabase:Configuration	Edit	Allows modifying database configuration such as parameters, and scaling configurations.
FDE:hide_admin_pw	View	Allows blocking to view the database administrator password.
manageDatabase:Delete	Delete	Allows deleting a database.

3. Backup & Restore Permissions

Permission	Action Type	Description
manageDatabase:ListBackup	View	Allows viewing backup service information.
manageDatabase:EnableBackup	Create	Allows enabling Backup & Restore for a database.
manageDatabase:DeleteBackup	Edit	Allows disabling Backup & Restore for a database.
manageDatabase:CreateJobBackup	Create	Allows creating backup jobs for a database.
manageDatabase:ViewJobBackup	View	Allows viewing backup job details.
manageDatabase:RunNowJobBackup	Create	Allows triggering an on-demand backup snapshot for a database.
manageDatabase:EditJobBackup	Edit	Allows editing backup jobs.
manageDatabase:DeleteJobBackup	Delete	Allows deleting backup jobs.
manageDatabase:ListRestore	View	Allows viewing available restore points.
manageDatabase:Restore	Create	Allows restoring a database from backup or recover to a point in time.

4. DB Proxy Management Permissions

Permission	Action Type	Description
manageDatabase:ListProxy	View	Allow viewing the database's DB Proxy list.
manageDatabase:CreateProxy	Create	Allow creating a new DB proxy for a database in the system.
manageDatabase:DeleteProxy	Delete	Allow deleting a DB Proxy for databases in the system.

5. Notification Permissions

Permission	Action Type	Description
manageDatabase:ListNotification	View	Allows viewing database notification settings.
manageDatabase:CreateNotification	Create	Allows enabling notifications for a database.
manageDatabase:DeleteNotification	Delete	Allows disabling database notifications.

6. Monitoring Permissions

Permission	Action Type	Description
manageDatabase:ListNotification	View	Allows viewing database notification settings.

7. Reporting Permissions

Permission	Action Type	Description
manageDatabase:ReportConfig	Edit	Allows configuring and manageing the schedule for receiving database activity reports.

Configure permissions for the FPT Database Engine service

To configure roles and define user groups, refer to section Role Management, and User Group Management for detailed instructions.

Accessing FPT Console Portal

Role Management

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months
cookielawinfo-checbox-functional	11 months
cookielawinfo-checbox-others	11 months
cookielawinfo-checkbox-necessary	11 months
cookielawinfo-checkbox-performance	11 months
viewed_cookie_policy	11 months