Data Security CenterData Security Center

Compute
Elastic Cloud Server
Bare Metal Server
Auto Scaling
Image Management Service
Dedicated Host
FunctionGraph
Networking
Virtual Private Cloud
Elastic IP
Elastic Load Balance
NAT Gateway
Direct Connect
Virtual Private Network
Domain Name Service
VPC Endpoint
Cloud Connect
Enterprise Switch
Security & Compliance
Anti-DDoS
Web Application Firewall
Host Security Service
Data Encryption Workshop
Database Security Service
Advanced Anti-DDoS
Data Security Center
Container Guard Service
Situation Awareness
Managed Threat Detection
Compass
Cloud Certificate Manager
Anti-DDoS Service
Databases
Relational Database Service
Document Database Service
Data Admin Service
Data Replication Service
GaussDB NoSQL
GaussDB(for MySQL)
Distributed Database Middleware
GaussDB(for openGauss)
Developer Services
ServiceStage
Distributed Cache Service
Simple Message Notification
Application Performance Management
Application Operations Management
Blockchain
API Gateway
Cloud Performance Test Service
Distributed Message Service for Kafka
Distributed Message Service for RabbitMQ
Distributed Message Service for RocketMQ
Cloud Service Engine
DevCloud
ProjectMan
CodeHub
CloudRelease
CloudPipeline
CloudBuild
CloudDeploy
Cloud Communications
Message & SMS
Cloud Ecosystem
Marketplace
Partner Center
User Support
My Account
Billing Center
Cost Center
Resource Center
Enterprise Management
Service Tickets
HUAWEI CLOUD (International) FAQs
ICP License Service
Support Plans
Customer Operation Capabilities
Partner Support Plans
Professional Services
enterprise-collaboration
Meeting
IoT
IoT
Intelligent EdgeFabric
DeveloperTools
SDK Developer Guide
API Request Signing Guide
Terraform
Koo Command Line Interface
Help Center> Data Security Center> FAQs> Adding Data Assets> Agency Policies Obtained After the Access To Assets Is Allowed
Updated at: Feb 22, 2022 GMT+08:00

Agency Policies Obtained After the Access To Assets Is Allowed

After the access to cloud resources is allowed, DSC can access your private OBS buckets, databases, big data assets, and data security overview. Table 1 describes the agency policies obtained after the access is allowed.

Table 1 Agency policies

Asset

Policy

Scope

Remarks

OBS

OBS Adminstrator

Global

Used to configure OBS logs, obtain the OBS bucket list, and download items form OBS.

EVS ReadOnlyAccess

Regional

Used to obtain the EVS disk list.

OBS Adminstrator

Global

Used to obtain the logs delivered by OBS.

Database

ECS ReadOnlyAccess

Regional

Used to obtain the list of ECSs where databases are built.

RDS ReadOnlyAccess

Regional

Used to obtain the RDS database list and related information.

DWS ReadOnlyAccess

Regional

Used to obtain the DWS instance list.

VPC FullAccess

Regional

Used to establish network connection and create VPC ports and security group rules

KMS CMKFullAccess

Regional

Used to perform encryption using KMS in data masking.

Big Data

ECS ReadOnlyAccess

Regional

Used to obtain the list of ECSs where big data sources reside.

CSS ReadOnlyAccess

Regional

Used to obtain the CSS data cluster list and data indexes.

DLI Service User

Regional

Used to obtain the DLI queue and database.

VPC FullAccess

Regional

Used to establish network connection and create VPC ports and security group rules.

KMS CMKFullAccess

Regional

Used to perform encryption using KMS in data masking.

Overview

Tenant Guest

Regional

Used to obtain the list of cloud services used for data storage and processing.

OBS Adminstrator

Global

Used to configure OBS logs, obtain the OBS bucket list, and download items form OBS.

EVS ReadOnlyAccess

Regional

Used to obtain the EVS disk list.

OBS Adminstrator

Global

Used for OBS to deliver logs.

Did you find this page helpful?

Failed to submit the feedback. Please try again later.

Which of the following issues have you encountered?







Please complete at least one feedback item.

Content most length 200 character

Content is empty.

OK Cancel