All cloud bridges have parameters that allow you to authenticate with the cloud using a cloud security principal ID and its secret (long HEX Secret / Password). For example, AWS cloud bridges have the Access Key ID and Secret Access Key parameters. These parameters allow you to authenticate with the cloud programmatically.
This authentication method is appropriate when you
o use a small number of cloud bridges
o are starting out with cloud bridges
o would like to use different security principals for different bridges
This is simply a standard metadata harvesting (model import) using the bridge parameters and not using a cloud identity defined here. Because you specified the correct secret directly in the bridge parameter, the bridge will ignore any CLOUD IDENTITY specified.