AliyunCloudSSOReadOnlyAccess 是阿里云管理的產(chǎn)品系統(tǒng)策略，您可以將 AliyunCloudSSOReadOnlyAccess 授權(quán)給 RAM 身份（RAM 用戶(hù)、RAM 用戶(hù)組和 RAM 角色），本策略定義了只讀訪(fǎng)問(wèn)云SSO（CloudSSO）的權(quán)限。

策略詳情

• 類(lèi)型：系統(tǒng)策略

• 創(chuàng)建時(shí)間：2021-08-20 03:13:35

• 更新時(shí)間：2021-08-20 03:13:35

• 當(dāng)前版本：v1

策略?xún)?nèi)容

{
  "Version": "1",
  "Statement": [
    {
      "Action": [
        "cloudsso:List*",
        "cloudsso:Get*",
        "cloudsso:Check*"
      ],
      "Resource": "*",
      "Effect": "Allow"
    },
    {
      "Action": [
        "resourcemanager:GetResourceDirectory",
        "resourcemanager:ListParents",
        "resourcemanager:ListChildrenForParent",
        "resourcemanager:ListAncestors",
        "resourcemanager:ListAccountRecordsForParent",
        "resourcemanager:GetFolder",
        "resourcemanager:GetAccount"
      ],
      "Resource": "*",
      "Effect": "Allow"
    },
    {
      "Action": [
        "ram:GetPolicyVersion",
        "ram:ListPolicyVersions",
        "ram:GetPolicy"
      ],
      "Resource": "acs:ram:*:system:policy/*",
      "Effect": "Allow"
    }
  ]
}

相關(guān)文檔

• 權(quán)限策略基本元素

• 為RAM用戶(hù)授權(quán)

• 為RAM用戶(hù)組授權(quán)

• 為RAM角色授權(quán)