All Documents

Data Security CenterData Security Center

    Compute
    Elastic Cloud Server
    Bare Metal Server
    Auto Scaling
    Image Management Service
    Dedicated Host
    FunctionGraph
    Management & Governance
    Cloud Eye
    Identity and Access Management
    Cloud Trace Service
    Tag Management Service
    Log Tank Service
    Resource Management Service
    Cloud Communications
    Message & SMS
    Business Applications
    ROMA Connect
    Edge Data Center Management
    DeveloperTools
    SDK Developer Guide
    API Request Signing Guide
    Terraform
    Koo Command Line Interface
    Storage
    Object Storage Service
    Elastic Volume Service
    Cloud Backup and Recovery
    Content Delivery Network
    Storage Disaster Recovery Service
    Scalable File Service
    Volume Backup Service
    Cloud Server Backup Service
    Data Express Service
    Dedicated Enterprise Storage Service
    Databases
    Relational Database Service
    Document Database Service
    Data Admin Service
    Data Replication Service
    GaussDB NoSQL
    GaussDB(for MySQL)
    Distributed Database Middleware
    GaussDB(for openGauss)
    Media Services
    Media Processing Center
    Live
    enterprise-collaboration
    Meeting
    Pricing
    Pricing Principles
    Networking
    Virtual Private Cloud
    Elastic IP
    Elastic Load Balance
    NAT Gateway
    Direct Connect
    Virtual Private Network
    Domain Name Service
    VPC Endpoint
    Cloud Connect
    Enterprise Switch
    Migration
    Server Migration Service
    Object Storage Migration Service
    Cloud Data Migration
    Cloud Ecosystem
    Marketplace
    Partner Center
    AI
    MapReduce Service
    GaussDB(DWS)
    Face Recognition Service
    Graph Engine Service
    Data Lake Insight
    Cloud Search Service
    Content Moderation
    Image Recognition
    Data Lake Factory
    Optical Character Recognition
    ModelArts
    Data Ingestion Service
    ImageSearch
    Conversational Bot Service
    Speech Interaction Service
    Huawei HiLens
    Data Lake Visualization
    Data Lake Governance Center
    Natural Language Processing
    Containers
    Cloud Container Engine
    Software Repository for Container
    Application Orchestration Service
    Multi-Cloud Container Platform
    Developer Services
    ServiceStage
    Distributed Cache Service
    Simple Message Notification
    Application Performance Management
    Application Operations Management
    Blockchain
    API Gateway
    Cloud Performance Test Service
    Distributed Message Service for Kafka
    Distributed Message Service for RabbitMQ
    Distributed Message Service for RocketMQ
    Cloud Service Engine
    DevCloud
    ProjectMan
    CodeHub
    CloudRelease
    CloudPipeline
    CloudBuild
    CloudDeploy
    Dedicated Cloud
    Dedicated Computing Cluster
    Dedicated Distributed Storage Service
    IoT
    IoT
    Intelligent EdgeFabric
    Security & Compliance
    Anti-DDoS
    Web Application Firewall
    Host Security Service
    Data Encryption Workshop
    Database Security Service
    Advanced Anti-DDoS
    Data Security Center
    Container Guard Service
    Situation Awareness
    Managed Threat Detection
    Compass
    Cloud Certificate Manager
    Anti-DDoS Service
    Others
    Product Pricing Details
    System Permissions
    Console Quick Start
    Common FAQs
    Instructions for Associating with a HUAWEI CLOUD Partner
    My Credentials
    Message Center
    User Support
    My Account
    Billing Center
    Cost Center
    Resource Center
    Enterprise Management
    Service Tickets
    HUAWEI CLOUD (International) FAQs
    ICP License Service
    Support Plans
    Customer Operation Capabilities
    Partner Support Plans
    Professional Services
    Solutions
    SAP Cloud
    High Performance Computing
    Compute
    Elastic Cloud Server
    Bare Metal Server
    Auto Scaling
    Image Management Service
    Dedicated Host
    FunctionGraph
    Networking
    Virtual Private Cloud
    Elastic IP
    Elastic Load Balance
    NAT Gateway
    Direct Connect
    Virtual Private Network
    Domain Name Service
    VPC Endpoint
    Cloud Connect
    Enterprise Switch
    Security & Compliance
    Anti-DDoS
    Web Application Firewall
    Host Security Service
    Data Encryption Workshop
    Database Security Service
    Advanced Anti-DDoS
    Data Security Center
    Container Guard Service
    Situation Awareness
    Managed Threat Detection
    Compass
    Cloud Certificate Manager
    Anti-DDoS Service
    Databases
    Relational Database Service
    Document Database Service
    Data Admin Service
    Data Replication Service
    GaussDB NoSQL
    GaussDB(for MySQL)
    Distributed Database Middleware
    GaussDB(for openGauss)
    Developer Services
    ServiceStage
    Distributed Cache Service
    Simple Message Notification
    Application Performance Management
    Application Operations Management
    Blockchain
    API Gateway
    Cloud Performance Test Service
    Distributed Message Service for Kafka
    Distributed Message Service for RabbitMQ
    Distributed Message Service for RocketMQ
    Cloud Service Engine
    DevCloud
    ProjectMan
    CodeHub
    CloudRelease
    CloudPipeline
    CloudBuild
    CloudDeploy
    Cloud Communications
    Message & SMS
    Cloud Ecosystem
    Marketplace
    Partner Center
    User Support
    My Account
    Billing Center
    Cost Center
    Resource Center
    Enterprise Management
    Service Tickets
    HUAWEI CLOUD (International) FAQs
    ICP License Service
    Support Plans
    Customer Operation Capabilities
    Partner Support Plans
    Professional Services
    enterprise-collaboration
    Meeting
    IoT
    IoT
    Intelligent EdgeFabric
    DeveloperTools
    SDK Developer Guide
    API Request Signing Guide
    Terraform
    Koo Command Line Interface
    Storage
    Object Storage Service
    Elastic Volume Service
    Cloud Backup and Recovery
    Content Delivery Network
    Storage Disaster Recovery Service
    Scalable File Service
    Volume Backup Service
    Cloud Server Backup Service
    Data Express Service
    Dedicated Enterprise Storage Service
    Containers
    Cloud Container Engine
    Software Repository for Container
    Application Orchestration Service
    Multi-Cloud Container Platform
    Management & Governance
    Cloud Eye
    Identity and Access Management
    Cloud Trace Service
    Tag Management Service
    Log Tank Service
    Resource Management Service
    Migration
    Server Migration Service
    Object Storage Migration Service
    Cloud Data Migration
    Others
    Product Pricing Details
    System Permissions
    Console Quick Start
    Common FAQs
    Instructions for Associating with a HUAWEI CLOUD Partner
    My Credentials
    Message Center
    Media Services
    Media Processing Center
    Live
    Dedicated Cloud
    Dedicated Computing Cluster
    Dedicated Distributed Storage Service
    Business Applications
    ROMA Connect
    Edge Data Center Management
    AI
    MapReduce Service
    GaussDB(DWS)
    Face Recognition Service
    Graph Engine Service
    Data Lake Insight
    Cloud Search Service
    Content Moderation
    Image Recognition
    Data Lake Factory
    Optical Character Recognition
    ModelArts
    Data Ingestion Service
    ImageSearch
    Conversational Bot Service
    Speech Interaction Service
    Huawei HiLens
    Data Lake Visualization
    Data Lake Governance Center
    Natural Language Processing
    Solutions
    SAP Cloud
    High Performance Computing
    Pricing
    Pricing Principles
      Help Center> Data Security Center> FAQs> Adding Data Assets> Agency Policies Obtained After the Access To Assets Is Allowed
      Updated at: Feb 22, 2022 GMT+08:00
      View PDF

      Agency Policies Obtained After the Access To Assets Is Allowed

      After the access to cloud resources is allowed, DSC can access your private OBS buckets, databases, big data assets, and data security overview. Table 1 describes the agency policies obtained after the access is allowed.

      Table 1 Agency policies

      Asset

      Policy

      Scope

      Remarks

      OBS

      OBS Adminstrator

      Global

      Used to configure OBS logs, obtain the OBS bucket list, and download items form OBS.

      EVS ReadOnlyAccess

      Regional

      Used to obtain the EVS disk list.

      OBS Adminstrator

      Global

      Used to obtain the logs delivered by OBS.

      Database

      ECS ReadOnlyAccess

      Regional

      Used to obtain the list of ECSs where databases are built.

      RDS ReadOnlyAccess

      Regional

      Used to obtain the RDS database list and related information.

      DWS ReadOnlyAccess

      Regional

      Used to obtain the DWS instance list.

      VPC FullAccess

      Regional

      Used to establish network connection and create VPC ports and security group rules

      KMS CMKFullAccess

      Regional

      Used to perform encryption using KMS in data masking.

      Big Data

      ECS ReadOnlyAccess

      Regional

      Used to obtain the list of ECSs where big data sources reside.

      CSS ReadOnlyAccess

      Regional

      Used to obtain the CSS data cluster list and data indexes.

      DLI Service User

      Regional

      Used to obtain the DLI queue and database.

      VPC FullAccess

      Regional

      Used to establish network connection and create VPC ports and security group rules.

      KMS CMKFullAccess

      Regional

      Used to perform encryption using KMS in data masking.

      Overview

      Tenant Guest

      Regional

      Used to obtain the list of cloud services used for data storage and processing.

      OBS Adminstrator

      Global

      Used to configure OBS logs, obtain the OBS bucket list, and download items form OBS.

      EVS ReadOnlyAccess

      Regional

      Used to obtain the EVS disk list.

      OBS Adminstrator

      Global

      Used for OBS to deliver logs.
      Parent topic: Adding Data Assets

      Adding Data Assets FAQs

      more

      Did you find this page helpful?

      Failed to submit the feedback. Please try again later.

      Which of the following issues have you encountered?







      Please complete at least one feedback item.

      Content most length 200 character

      Content is empty.

      OK Cancel