文档

云备份ECS容灾的服务关联角色

更新时间:

本文为您介绍什么是云备份ECS容灾的服务关联角色(AliyunServiceRoleForHbrDr)以及如何删除服务关联角色。

背景信息

云备份ECS容灾的服务关联角色(AliyunServiceRoleForHbrDr)是在某些情况下,为了完成云备份ECS容灾自身的某个功能,需要获取其他云服务的访问权限,而提供的RAM角色。更多关于服务关联角色的信息请参见服务关联角色

云备份ECS容灾服务可能需要创建新的vSwitch、安全组及ECS实例、镜像等,您可以通过云备份ECS容灾的服务关联角色(AliyunServiceRoleForHbrDr)获取访问VPC和ECS资源的权限。

AliyunServiceRoleForHbrDr 介绍

角色名称:AliyunServiceRoleForHbrDr

角色权限策略: AliyunServiceRolePolicyForHbrDr

权限说明:

{
  "Version": "1",
  "Statement": [
    {
      "Action": [
        "ecs:DescribeImages",
        "ecs:CreateDisk",
        "ecs:AttachDisk",
        "ecs:ReInitDisk",
        "ecs:DetachDisk",
        "ecs:DescribeDisks",
        "ecs:ReplaceSystemDisk",
        "ecs:DeleteDisk",
        "ecs:ResizeDisk",
        "ecs:CreateInstance",
        "ecs:StartInstance",
        "ecs:StopInstance",
        "ecs:RebootInstance",
        "ecs:DeleteInstance",
        "ecs:DescribeInstances",
        "ecs:CreateSecurityGroup",
        "ecs:DescribeSecurityGroups",
        "ecs:AuthorizeSecurityGroup",
        "ecs:AuthorizeSecurityGroupEgress",
        "ecs:DeleteSecurityGroup",
        "ecs:AllocatePublicIpAddress",
        "ecs:ModifyInstanceAttribute",
        "ecs:JoinSecurityGroup",
        "ecs:CreateNetworkInterface",
        "ecs:DeleteNetworkInterface",
        "ecs:DescribeNetworkInterfaces",
        "ecs:CreateNetworkInterfacePermission",
        "ecs:DescribeNetworkInterfacePermissions",
        "ecs:DeleteNetworkInterfacePermission",
        "ecs:CreateSnapshot",
        "ecs:DeleteSnapshot",
        "ecs:DescribeSnapshots",
        "ecs:DescribeSnapshotLinks",
        "ecs:CreateCommand",
        "ecs:InvokeCommand",
        "ecs:StopInvocation",
        "ecs:DeleteCommand",
        "ecs:DescribeCommands",
        "ecs:DescribeInvocations",
        "ecs:DescribeInvocationResults",
        "ecs:DescribeCloudAssistantStatus",
        "ecs:ModifyResourceMeta"
      ],
      "Resource": "*",
      "Effect": "Allow"
    },
    {
      "Action": [
        "vpc:DescribeVpcs",
        "vpc:DescribeVSwitches",
        "vpc:DescribeEipAddresses",
        "vpc:AssociateEipAddress"
      ],
      "Resource": "*",
      "Effect": "Allow"
    }
  ]
}

删除服务关联角色

如果您需要删除服务关联角色(AliyunServiceRoleForHbrDr),您需要先删除云备份ECS容灾下的所有站点对。

删除服务关联角色具体操作请参见删除服务关联角色

  • 本页导读 (1)
文档反馈