- Service Overview
- Getting Started
-
User Guide
- COC Enablement and Permissions Granting
- Overview
-
Resources
- Resource Management
-
Application Management
- Overview
- Creating an Application
- Modifying an Application
- Deleting an Application
- Application Topology
- Creating a Component
- Modifying a Component
- Deleted a Component
- Creating a Group
- Modifying a Group
- Deleting a Group
- Manually Associating with Resources
- Automatically Associating with Resources
- Transferring Resources
- Disassociating Resources from an Application Group
- Viewing Resource Details
- Viewing Capacity Details
- Resource O&M
- Automated O&M
-
Faults
- Diagnosis Tools
- Alarms
-
Incident Management
- Incidents
- Creating an Incident
- Rejecting an Incident
- Resubmitting an Incident After Rejection
- Forwarding Incidents
- Handling Incidents
- Upgrading/Downgrading an Incident
- Adding Remarks
- Starting a War Room
- Handling an Incident
- Verifying Incident
- Creating an Improvement Ticket For An Incident
- Incident History
- WarRoom
- Improvement Management
- Issue Management
- Forwarding Rules
- Data Source Integration Management
- Change Management
- Resilience Center
- Task Management
- Basic Configurations
- Viewing Logs
- Best Practices
- API Reference
-
FAQs
- Product Consulting
- Resource Management FAQs
-
FAQs About Resource O&M
-
Patch Management FAQs
- What Can I Do If the Patch Baselines Do Not Take Effect?
- What Are the Differences Between the Installation Rule Baselines And User-defined Baselines?
- What Can I Do If Exception all mirrors were tried Is Recorded in the Patch Service Ticket Log?
- Why Can't I Select a Node?
- What Can I Do If the Compliance Report Still Reports Non-compliance for a Patch After the Patch Has Been Repaired?
- What Can I Do If the lsb_release not found Error Occurs During Patch Operations?
- Automation FAQs
- Batch Operation FAQs
- FAQs About Parameter Management
- Resource O&M Permissions and Supported Actions
-
Patch Management FAQs
- FAQs About Fault Management
- FAQs About Change Ticket Management
- Resilience Center FAQs
- Change History
Show all
How Do I Control Permissions Using Enterprise Projects?
Description
How Do I Control the Permissions of the Cloud O&M Center Through Enterprise Projects?
Solutions
- Log in to the IAM console as an administrator.
- Choose Permissions > Policies/Roles and click Create Custom Policy.
Figure 1 Creating a custom policy
- Set the policy content, select CloudOpsCenter, and select the operations you want to authorize by enterprise project. Click OK.
Figure 2 Setting the policy content (1)
Figure 3 Setting the policy content (2)
Figure 4 Setting the policy content - 3
NOTE:
Currently, only some Cloud O&M Center operations can be authorized by enterprise project. For details about how to create custom policies, see Table 1.
Table 1 Operations that can be authorized by enterprise project Operation
Description
coc:instance:reinstallOS
Grants permission to reinstall the ECS OS.
coc:instance:changeOS
Grants permission to change the ECS OS.
coc:instance:start
Grants permission to start an ECS.
coc:instance:reboot
Grants permission to restart an ECS.
coc:instance:stop
Grants permission to stop an ECS.
coc:instance:startRDSInstance
Grants permission to enable an RDS DB instance.
coc:instance:stopRDSInstance
Grants permission to stop an RDS DB instance.
coc:instance:restartRDSInstance
Grants permission to reboot an RDS DB instance.
coc:instance:scanOSCompliance
Grants the permission to scan server OS patches.
coc:instance:installPatches
Grants permission to install patches for an ECS.
coc:instance:executeDocument
Grants permission to execute documents on an ECS.
coc:schedule:create
Grants permission to create a scheduled task list.
coc:schedule:update
Grants permission to update a scheduled task.
- The administrator selects a user or user group for authorization.
Figure 5 Select an object for authorization.
- Select the custom policy created in step 3. When setting the minimum authorization scope, specify enterprise project resources.
Figure 6 Granting permissions by enterprise project
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
