AUsing Identity Policies to Assign Custom Permissions to IAM Users

Configuring a server purchase template

vpc:vpcs:list (Listing VPCs)

vpc:subnets:get (Querying subnets or querying details about a subnet)

vpc:securityGroups:get (Querying security groups or querying details about a security group)

eps:enterpriseProjects:list (Listing enterprise projects)

ecs:availabilityZones:list (Listing AZs)

Manually configuring target server specifications

ecs:cloudServerFlavors:get (Querying details about flavors and extended flavor information)

evs:types:get (Querying EVS disk types)

ims:images:list (Listing images)

ims:images:get (Querying details about an image)

Associating source servers with existing target servers

evs:volumes:list (Listing EVS disks)

ecs:cloudServers:list (Querying details about ECSs)

ims:images:get (Querying details about a specified image)

ecs:cloudServerFlavors:get (Querying details about flavors and extended flavor information)

Importing target resource configurations during the design of server migration plans

obs:bucket:ListBucket (Listing objects in a bucket)

obs:bucket:ListAllMyBuckets (Listing buckets)

Creating a server migration workflow

vpc:vpcs:list (Listing VPCs)

vpc:vpcs:get (Querying VPC details)

vpc:subnets:get (Querying subnet details)

vpc:subnets:list (Listing subnets)

vpc:securityGroups:get (Querying security groups or querying details about a security group)

vpc:securityGroups:list (Listing security groups)

eps:enterpriseProjects:list (Listing enterprise projects)

kms:cmk:list (Listing keys)

kms:cmk:get (Querying key information)

sms:server:migrationServer (Migrating a source server)

sms:server:queryServer (Querying source servers)

smn:topic:listTopic (Listing topics)

smn:topic:get (Querying topic details)

Getting server recommendations

ecs:cloudServerFlavors:get (Querying details about flavors and extended flavor information)

ecs:cloudServers:list (Querying details about ECSs)

ims:images:list (Listing images)

ims:images:get (Querying details about an image)

evs:volumes:list (Listing EVS disks)

evs:types:get (Querying EVS disk types)

Creating a cross-az migration workflow

ecs:availabilityZones:list (Listing AZs)

smn:topic:listTopic (Listing topics)

smn:topic:get (Querying topic details)

Configuring product mappings for TCO analysis

ecs:cloudServerFlavors:get (Querying details about flavors and extended flavor information)

ims:images:list (Listing images)

evs:types:get (Querying EVS disk types)

Configuring target buckets in an object storage migration plan

obs:bucket:ListAllMyBuckets (Listing buckets)

Creating a storage migration workflow

OMS Administrator (Full permissions for OMS)

smn:topic:listTopic (Listing topics)

smn:topic:get (Querying topic details)

smn:topic:updateNotifyPolicy (Granting the permissions to modify notification policies)

smn:topic:listAttributes (Querying topic policies)

Creating a migration cluster

OMS Administrator (Full permissions for OMS)

nat:natGateways:list (Listing NAT gateways)

vpc:vpcs:list (Listing VPCs)

vpc:subnets:list (Listing subnets)

vpc:publicIps:list (Listing EIPs)

eip:publicIps:get (Querying details about an EIP)

ecs:cloudServerFlavors:get (Querying details about flavors and extended flavor information)

Authorizing an agency

iam:agencies:listAgencies (Querying agencies based on specified conditions)

iam:roles:listRoles (Listing permissions)

iam:quotas:listQuotas (Listing quotas)

iam:agencies:listRoles (Listing permissions of an agency)

iam:agencies:create (Creating an agency)

iam:agencies:grantRole (Granting specified permissions to an agency)

iam:roles:create (Creating a custom policy)

iam:roles:update (Updating a custom policy)

iam:agencies:revokeRole (Revoking specific permissions from an agency)