AliyunVpnAccessingIdaasRolePolicy 是專用于服務(wù)角色的授權(quán)策略，通常會(huì)在創(chuàng)建對(duì)應(yīng)的服務(wù)角色時(shí)同步完成授權(quán)，以允許服務(wù)角色代您訪問(wèn)其他云服務(wù)。本策略由對(duì)應(yīng)的阿里云服務(wù)按需更新，請(qǐng)勿將本策略授權(quán)給服務(wù)角色之外的 RAM 身份使用。

策略詳情

• 類型：系統(tǒng)策略

• 創(chuàng)建時(shí)間：2020-02-19 06:26:28

• 更新時(shí)間：2020-02-19 06:26:28

• 當(dāng)前版本：v1

策略內(nèi)容

{
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "eiam:ListEiamInstances",
        "eiam:ListEiamRegions",
        "eiam:ListInstances",
        "eiam:GetApplication",
        "eiam:ListApplicationClientSecrets",
        "eiam:ObtainApplicationClientSecret",
        "yundun-idaas:DescribeInstances",
        "yundun-idaas:CreateOauthClient",
        "yundun-idaas:DescribeOauthClientDetail"
      ],
      "Resource": "*"
    },
    {
      "Action": "ram:CreateServiceLinkedRole",
      "Resource": "*",
      "Effect": "Allow",
      "Condition": {
        "StringEquals": {
          "ram:ServiceName": "idaasread.eiam.aliyuncs.com"
        }
      }
    }
  ],
  "Version": "1"
}

相關(guān)文檔

• 權(quán)限策略基本元素

• 普通服務(wù)角色