AliyunServiceRoleForCloudNDR 是專用于服務關聯角色的授權策略,會在創建服務關聯角色 AliyunServiceRoleForCloudNDR 時自動授權,以允許服務關聯角色代您訪問其他云服務。本策略由對應的阿里云服務按需更新,請勿將本策略授權給服務關聯角色之外的 RAM 身份使用。
策略詳情
類型:系統策略
創建時間:2024-05-27 16:58:02
更新時間:2024-05-27 16:58:02
當前版本:v6
策略內容
{"Version":"1","Statement":[{"Action":["ecs:DescribeInstances","ecs:DescribeNetworkInterfaces"],"Resource":"*","Effect":"Allow"},{"Action":["slb:DescribeLoadBalancers"],"Resource":"*","Effect":"Allow"},{"Action":["nlb:ListLoadBalancers"],"Resource":"*","Effect":"Allow"},{"Action":["alb:GetLoadBalancerAttribute","alb:ListLoadBalancers"],"Resource":"*","Effect":"Allow"},{"Action":["vpc:DescribeEipAddresses","vpc:DescribeNatGateways","vpc:DescribeIpv6Addresses"],"Resource":"*","Effect":"Allow"},{"Action":["log:DescribeService","log:EnableService"],"Resource":"*","Effect":"Allow"},{"Action":["log:ListProject","log:ListLogStores"],"Resource":"acs:log:*:*:project/*","Effect":"Allow"},{"Action":["log:PostLogStoreLogs","log:GetProject","log:GetLogStore","log:CreateLogStore","log:CreateProject","log:GetIndex","log:CreateIndex","log:UpdateIndex","log:CreateDashboard","log:ClearLogStoreStorage","log:UpdateLogStore","log:UpdateDashboard","log:DeleteProject","log:CreateSavedSearch","log:UpdateSavedSearch","log:DeleteLogStore"],"Resource":"acs:log:*:*:project/ndr*","Effect":"Allow"},{"Action":"yundun-aegis:DescribeAccesskeyLeakList","Resource":"*","Effect":"Allow"},{"Action":"ram:DeleteServiceLinkedRole","Resource":"*","Effect":"Allow","Condition":{"StringEquals":{"ram:ServiceName":"ndr.aliyuncs.com"}}}]}相關文檔
文檔內容是否對您有幫助?