Help Center/ Elastic Load Balance/ FAQs/ ELB Use/ ELB Functionality/ What Types of APIs Does ELB Provide? What Are Permissions of ELB?

Updated on 2023-03-30 GMT+08:00

View PDF

What Types of APIs Does ELB Provide? What Are Permissions of ELB?

ELB supports the following policies:

**Table 1** ELB policies
Policy Type	Policy Name	Description
RBAC policy	ELB Administrator	Has all permissions on ELB. Before assigning the RBAC policy to a user group, check whether the user group has a dependent policy. If yes, set the dependent permission to make the RBAC policy take effect.
Fine-grained policy	ELB FullAccess	Has all permissions on ELB. If this function is not enabled, you cannot assign a fine-grained policy to a user group.
Fine-grained policy	ELB ReadOnlyAccess	Has the read-only permission on ELB.

**Table 2** Common operations supported by each system policy
Operation	ELB FullAccessAdmin	ELB ReadOnlyAccess	ELB Administrator
Creating a load balancer	√	×	√
Querying a load balancer	√	√	√
Querying a load balancer and associated resources	√	√	√
Querying load balancers	√	√	√
Modifying a load balancer	√	×	√
Deleting a load balancer	√	×	√
Adding a listener	√	×	√
Querying a listener	√	√	√
Modifying a listener	√	×	√
Deleting a listener	√	×	√
Adding a backend server group	√	×	√
Querying a backend server group	√	√	√
Modifying a backend server group	√	×	√
Deleting a backend server group	√	×	√
Adding a backend server	√	×	√
Querying a backend server	√	√	√
Modifying a backend server	√	×	√
Deleting a backend server	√	×	√
Configuring a health check	√	×	√
Querying a health check	√	√	√
Modifying a health check	√	×	√
Disabling a health check	√	×	√
Assigning an EIP	×	×	√
Binding an EIP to a load balancer	×	×	√
Querying an EIP	√	√	√
Unbinding an EIP from a load balancer	×	×	√
Viewing metrics	×	×	√
Viewing access logs	×	×	√

To unbind an EIP, you also need to configure the vpc:bandwidths:update and vpc:publicIps:update permission of the VPC service. For details, see the Virtual Private Cloud API Reference.
To view monitoring metrics, you also need to configure the CES ReadOnlyAccess permission. For details, see the Cloud Eye API Reference.
To view access logs, you also need to configure the LTS ReadOnlyAccess permission. For details, see the Log Tank Service API Reference.

For details about fine-grained permissions, see the Elastic Load Balance API Reference.

Parent topic: ELB Functionality

Thank you very much for your feedback. We will continue working to improve the documentation.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel