- Service Overview
- Getting Started
-
User Guide
- COC Enablement and Permissions Granting
- Overview
-
Application and Resource Management
- Resource Management
-
Application Management
- Creating an Application
- Modifying an Application
- Deleting an Application
- Editing an Application Topology
- Creating a Component
- Modifying a Component
- Deleted a Component
- Creating a Group
- Modifying a Group
- Deleting a Group
- Manually Associating Resources with a Group
- Intelligently Associating Resources with a Group
- Transferring Resources
- Disassociating a Resource from an Application Group
- Viewing Resource Details
- Viewing Capacity Rankings
- Multi-cloud Configurations
- Cross-Account Resources
- Resource O&M
- Automated O&M
- Faults
- Change Management
- Resilience Center
- Task Management
- Basic Configurations
- Viewing Logs
- Best Practices
- API Reference
-
FAQs
- Product Consulting
- Resource Management FAQs
-
FAQs About Resource O&M
-
Patch Management FAQs
- What Can I Do If the Patch Baselines Do Not Take Effect?
- What Are the Differences Between the Installation Rule Baselines And User-defined Baselines?
- What Can I Do If Exception all mirrors were tried Is Recorded in the Patch Service Ticket Log?
- Why Can't I Select a Node?
- What Can I Do If the Compliance Report Still Reports Non-compliance for a Patch After the Patch Has Been Repaired?
- What Can I Do If the lsb_release not found Error Occurs During Patch Operations?
- Automation FAQs
- Batch Operation FAQs
- FAQs About Parameter Management
- Resource O&M Permissions and Supported Actions
-
Patch Management FAQs
- FAQs About Fault Management
- FAQs About Change Ticket Management
- Resilience Center FAQs
- Change History
- General Reference
Show all
Copied.
How Do I Control Permissions Using Enterprise Projects?
Description
How Do I Control the Permissions of the Cloud O&M Center Through Enterprise Projects?
Solutions
- Log in to the IAM console as an administrator.
- Choose Permissions > Policies/Roles and click Create Custom Policy.
Figure 1 Creating a custom policy
- Set the policy content, select CloudOpsCenter, and select the operations you want to authorize by enterprise project. Click OK.
Figure 2 Setting the policy content (1)Figure 3 Setting the policy content (2)Figure 4 Setting the policy content - 3
NOTE:
Currently, only some Cloud O&M Center operations can be authorized by enterprise project. For details about how to create custom policies, see Table 1.
Table 1 Operations that can be authorized by enterprise project Operation
Description
coc:instance:reinstallOS
Grants permission to reinstall the ECS OS.
coc:instance:changeOS
Grants permission to change the ECS OS.
coc:instance:start
Grants permission to start an ECS.
coc:instance:reboot
Grants permission to restart an ECS.
coc:instance:stop
Grants permission to stop an ECS.
coc:instance:startRDSInstance
Grants permission to enable an RDS DB instance.
coc:instance:stopRDSInstance
Grants permission to stop an RDS DB instance.
coc:instance:restartRDSInstance
Grants permission to reboot an RDS DB instance.
coc:instance:scanOSCompliance
Grants the permission to scan server OS patches.
coc:instance:installPatches
Grants permission to install patches for an ECS.
coc:instance:executeDocument
Grants permission to execute documents on an ECS.
coc:schedule:create
Grants permission to create a scheduled task list.
coc:schedule:update
Grants permission to update a scheduled task.
- The administrator selects a user or user group for authorization.
Figure 5 Select an object for authorization.
- Select the custom policy created in step 3. When setting the minimum authorization scope, specify enterprise project resources.
Figure 6 Granting permissions by enterprise project
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot