AI 助理
备案控制台
文档
输入文档关键字查找
首页 访问控制 开发参考 系统策略参考 AliyunServiceRolePolicyForVPNCertificate

AliyunServiceRolePolicyForVPNCertificate

更新时间:
产品详情
我的收藏

AliyunServiceRolePolicyForVPNCertificate 是专用于服务关联角色的授权策略,会在创建服务关联角色 AliyunServiceRoleForVPNCertificate 时自动授权,以允许服务关联角色代您访问其他云服务。本策略由对应的阿里云服务按需更新,请勿将本策略授权给服务关联角色之外的 RAM 身份使用。

策略详情

  • 类型:系统策略

  • 创建时间:2020-11-12 06:28:09

  • 更新时间:2022-10-08 06:37:48

  • 当前版本:v4

策略内容

{
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "kms:DescribeCertificate",
        "kms:GetCertificate",
        "kms:CertificatePublicKeyEncrypt",
        "kms:CertificatePrivateKeyDecrypt",
        "kms:CertificatePublicKeyVerify",
        "kms:CertificatePrivateKeySign",
        "yundun-cert:DescribeSSLCertificateList",
        "yundun-cert:DescribeSSLCertificateMatchDomainList",
        "yundun-cert:DescribeSSLCertificatePublicKeyDetail",
        "yundun-cert:DescribeSSLCertificatePrivateKey",
        "yundun-cert:Sign",
        "yundun-cert:Verify",
        "yundun-cert:Encrypt",
        "yundun-cert:Decrypt"
      ],
      "Resource": "*"
    },
    {
      "Action": "ram:DeleteServiceLinkedRole",
      "Resource": "*",
      "Effect": "Allow",
      "Condition": {
        "StringEquals": {
          "ram:ServiceName": "certificate.vpn.aliyuncs.com"
        }
      }
    }
  ],
  "Version": "1"
}

相关文档

上一篇:AliyunServiceRolePolicyForTag下一篇:AliyunServiceRolePolicyForVpn