Alibaba Resource Access Management

Name: Alibaba Resource Access Management
Brand: Alibaba Cloud

Alibaba Cloud's identity and access management service with users, groups, roles, fine-grained JSON policies, SAML 2.0 federation to enterprise IdPs, and Security Token Service for temporary credentials

FluffyStack tools

Add to Service Builder Add to Compare Compare with equivalents Explore Alibaba in Treemap Explore security in Honeycomb See Alibaba regions on the World Map See security as a network Score jurisdiction exposure

Documentation Pricing Alibaba website

Jurisdictional exposure

Provider HQ

CNHangzhou, China

Subject to PIPL, DSL, CSL

Region locations

APACCNEUUKUSOther26 regions across 6 jurisdictions

Sovereign option

Yes — 11 sovereign-flagged regions available

Full scorecard for this service →CN lens detail →Sovereign cloud coverage map →

Attributes

Mfa Support: Yes

Sub-services (4)

Users and Groups

Console and programmatic identities with password, key, and MFA

Roles

Assumable identities for cross-account and service-linked access

Policies

JSON-based fine-grained policies for resource-level access control

Security Token Service

Temporary credentials for federated or short-lived access

Compliance & Certifications

This service is attested for the following frameworks. Always verify with the provider before relying on a specific compliance posture.

GDPR SOC 2 ISO 27001 PCI DSS

Where this runs

26 regions

15 countries

11sovereign

Sovereign regions (11)

China (Hangzhou) · HangzhouAlibaba Cloud China
China (Beijing) · BeijingAlibaba Cloud China
China (Shanghai) · ShanghaiAlibaba Cloud China
China (Shenzhen) · ShenzhenAlibaba Cloud China
China (Chengdu) · ChengduAlibaba Cloud China
China (Zhangjiakou) · ZhangjiakouAlibaba Cloud China
China (Hohhot) · HohhotAlibaba Cloud China
China (Qingdao) · QingdaoAlibaba Cloud China
China (Heyuan) · HeyuanAlibaba Cloud China
China (Ulanqab) · UlanqabAlibaba Cloud China
China (Wuhan) · WuhanAlibaba Cloud China

Commercial regions (15)

Europe (2)

Frankfurt
London

North America (2)

Silicon Valley
Virginia

Asia (9)

Hong Kong
Mumbai
Jakarta
Tokyo
Kuala Lumpur
Manila
Singapore
Seoul
Bangkok

Oceania (1)

Sydney

Middle East (1)

Dubai

Equivalent services on other platforms

AWS IAMAWS

Centralised identity and access management with users, groups, roles, and fine-grained JSON policies, MFA enforcement, identity federation, and IAM Access Analyzer

Microsoft Entra IDAzure

Cloud identity and access management (formerly Azure AD) with SSO, MFA, conditional access, B2B and B2C guest accounts, and privileged identity management

Cloud IAMGCP

Fine-grained identity and access management with predefined and custom roles, service accounts, workload identity federation, and audit logging

Huawei Identity and Access ManagementHuawei

Centralised identity management for Huawei Cloud with users, user groups, role-based and fine-grained policies, federated identity via SAML/OIDC, MFA, and temporary credentials through Security Token Service

OpenStack KeystoneOpenStack

Identity, authentication, and service-catalogue service — issues tokens, manages users and projects, federates with external identity providers (LDAP, SAML, OIDC), and exposes the service catalogue every other OpenStack project consumes for endpoint discovery

OCI Identity DomainsOracle

Enterprise identity-as-a-service covering workforce and customer identity with federation (SAML, OIDC), social sign-in, MFA, risk-based adaptive authentication, and delegated administration — the rebranded OCI IAM Identity Cloud Service

Tencent Cloud Access ManagementTencent

Tencent Cloud's identity and access management service with sub-accounts, user groups, roles, fine-grained JSON policies, SAML and OIDC federation, MFA, temporary credentials via Security Token Service, and cross-account role assumption

Pricing

Pricing model:free