Help Center/
Blockchain Service/
FAQs/
Enhanced Hyperledger Fabric/
Agency Permissions/
How Do I Adjust Agency Permissions of My Service?
Updated on 2025-11-28 GMT+08:00
How Do I Adjust Agency Permissions of My Service?
Due to account security concerns, unnecessary agency permissions should be deleted for your enhanced Hyperledger Fabric instances.
The procedure is as follows.
- Log in to the IAM console, click Agencies, and search for bcs_admin_trust.
- Click Modify.
- Go to the Permissions tab page and confirm that the following permissions have been correctly configured:
- Configuration of BCS agency policy for global:
{ "Version": "1.1", "Statement": [ { "Effect": "Allow", "Action": [ "obs:object:DeleteObject", "obs:bucket:HeadBucket", "obs:object:PutObject", "obs:bucket:CreateBucket" ] } ] } - Configuration of BCS agency policy for project:
{ "Version": "1.1", "Statement": [ { "Action": [ "cce:cluster:get", "cce:node:list", "ecs:cloudServers:listServerInterfaces", "ecs:cloudServers:list", "ecs:serverInterfaces:get", "vpc:publicIps:list", "vpc:publicIps:update", "vpc:ports:get", "cbr:vaults:delete", "cbr:vaults:get", "cbr:vaults:removeResources", "cbr:vaults:addResources", "cbr:vaults:create", "cbr:vaults:update", "cbr:vaults:backup", "cbr:backups:delete", "cbr:backups:list", "evs:volumes:list", "sfsturbo:shares:getShare" ], "Effect": "Allow" } ] }
- Configuration of BCS agency policy for global:
- Delete the following unnecessary permissions:
- SFS Administrator
- ECS FullAccess
- VPC Administrator
- EPS FullAccess
- CCE Administrator
- AOM FullAccess
- APM FullAccess
- OBS Administrator
- CBR FullAccess
- BCS Administrator
Parent topic: Agency Permissions
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
The system is busy. Please try again later.
For any further questions, feel free to contact us through the chatbot.
Chatbot
