Help Center/ Cloud Operations Center/ FAQs/ Product Consulting/ How Do I Control Permissions Using Enterprise Projects?
Updated on 2025-04-02 GMT+08:00
View PDF

How Do I Control Permissions Using Enterprise Projects?

Description

How Do I Control the Permissions of the Cloud O&M Center Through Enterprise Projects?

Solutions

  1. Log in to the IAM console as an administrator.
  2. Choose Permissions > Policies/Roles and click Create Custom Policy.
    Figure 1 Creating a custom policy
  3. Set the policy content, select CloudOpsCenter, and select the operations you want to authorize by enterprise project. Click OK.
    Figure 2 Setting the policy content (1)
    Figure 3 Setting the policy content (2)
    Figure 4 Setting the policy content - 3

    Currently, only some Cloud O&M Center operations can be authorized by enterprise project. For details about how to create custom policies, see Table 1.

    Table 1 Operations that can be authorized by enterprise project

    Operation

    Description

    coc:instance:reinstallOS

    Grants permission to reinstall the ECS OS.

    coc:instance:changeOS

    Grants permission to change the ECS OS.

    coc:instance:start

    Grants permission to start an ECS.

    coc:instance:reboot

    Grants permission to restart an ECS.

    coc:instance:stop

    Grants permission to stop an ECS.

    coc:instance:startRDSInstance

    Grants permission to enable an RDS DB instance.

    coc:instance:stopRDSInstance

    Grants permission to stop an RDS DB instance.

    coc:instance:restartRDSInstance

    Grants permission to reboot an RDS DB instance.

    coc:instance:scanOSCompliance

    Grants the permission to scan server OS patches.

    coc:instance:installPatches

    Grants permission to install patches for an ECS.

    coc:instance:executeDocument

    Grants permission to execute documents on an ECS.

    coc:schedule:create

    Grants permission to create a scheduled task list.

    coc:schedule:update

    Grants permission to update a scheduled task.
  4. The administrator selects a user or user group for authorization.
    Figure 5 Select an object for authorization.
  5. Select the custom policy created in step 3. When setting the minimum authorization scope, specify enterprise project resources.
    Figure 6 Granting permissions by enterprise project
Parent topic: Product Consulting