AliyunServiceRolePolicyForSasSecllm 是专用于服务关联角色的授权策略,会在创建服务关联角色 AliyunServiceRoleForSasSecllm 时自动授权,以允许服务关联角色代您访问其他云服务。本策略由对应的阿里云服务按需更新,请勿将本策略授权给服务关联角色之外的 RAM 身份使用。
策略详情
类型:系统策略
创建时间:2024-05-16 02:42:48
更新时间:2024-10-31 08:37:41
当前版本:v4
策略内容
{
"Version": "1",
"Statement": [
{
"Effect": "Allow",
"Action": [
"yundun-sas:GetSecurityScoreRule",
"yundun-sas:DescribeGroupedVul",
"yundun-sas:DescribeVulList",
"yundun-sas:DescribeVulListPage",
"yundun-sas:DescribeExposedInstanceList",
"yundun-sas:DescribeSuspEvents",
"yundun-aegis:DescribeAccesskeyLeakList",
"yundun-sas:DescribeCloudCenterInstances",
"yundun-sas:GetAssetDetailByUuid",
"yundun-sas:ListPluginForUuid",
"yundun-sas:DescribeVulTargetConfig",
"yundun-sas:DescribeInstanceStatistics",
"yundun-sas:DescribePropertyCount",
"yundun-sas:DescribeGroupedContainerInstances",
"yundun-sas:ListCloudAssetInstances",
"yundun-sas:ListInstanceCatalog",
"yundun-sas:ListCheckResult",
"yundun-sas:ListCheckInstanceResult",
"yundun-sas:ListCheckItemWarningSummary",
"yundun-sas:DescribeCheckWarningSummary",
"yundun-sas:DescribeWarningMachines",
"yundun-sas:DescribeCheckWarnings",
"yundun-sas:DescribeWebLockStatus",
"yundun-sas:DescribeWebLockFileChangeStatistics",
"yundun-sas:DescribeWebLockFileEvents",
"yundun-sas:DescribeBackupPolicies",
"yundun-sas:DescribeEmgVulItem",
"yundun-sas:DescribeSecureSuggestion"
],
"Resource": "*"
},
{
"Action": "ram:DeleteServiceLinkedRole",
"Resource": "*",
"Effect": "Allow",
"Condition": {
"StringEquals": {
"ram:ServiceName": "secllm.sas.aliyuncs.com"
}
}
}
]
}相关文档
文档内容是否对您有帮助?