# Access Management On region HAN02, you can use 4 types of accounts to access vStorage. Details of these 4 types include: * **Root User Account:** Is the first account [created](https://register.vngcloud.vn/signup) to access GreenNode with full access to all resource services on GreenNode. * **IAM User Account, Service Account:** Is an account created from the single Root user account with access rights depending on the access policy set from the Root user account.

* **S3 keys:** Is a pair of s3 keys with access key and secret key integrated by vStorage for compatibility with S3 client tools such as s3cmd, s3 SDK,...

Refer to the table below to get an overview of how accounts work on vStorage:

Account type	Access Channel	Place of Origin	Default Permission	Working with project	Làm việc với bucket
Root User Account	vStorage Portal	Initialize for the first time when using the service on GreenNode	Full rights on project and bucket	Yes	Yes
IAM User Account	vStorage Portal	IAM Portal	No access to any resources yet	Yes, permissions via IAM Policy	Yes, permissions via Bucket Policy
Service Account	vStorage API	IAM Portal	No access to any resources yet	Yes, permissions via IAM Policy	Yes, permissions via Bucket Policy
S3 keys	3rd party software	vStorage Portal	Depends on account creation	No	Yes, permissions depend on the type of user that created the S3 key