Help Center/
SoftWare Repository for Container/
User Guide (Enterprise Edition)/
Control Policies Supported by SWR/
SCPs
Updated on 2025-09-19 GMT+08:00
SCPs
Example: Forbid an account to download images from an SWR Enterprise Edition instance in a namespace.
The following describes how to configure an SCP to forbid an account to download images from the SWR Enterprise Edition instance named test-swr in the test-namespace namespace.
Configuration method
- Log in to the management console as the organization administrator or using the management account, and navigate to the Organizations console.
- On the Policies page, click Service control policies and then Create Policy.
- Enter the policy name and description. On the left of the policy content, you can copy and paste the following JSON policy content: Click Save.
{ "Version": "5.0", "Statement": [ { "Effect": "Deny", "Action": [ "swr:repository:downloadArtifact" ], "Resource": [ "swr:*:*:repository:test-swr/test-namespace" ] } ] } - Bind the policy to an OU or account of the organization to apply the policy.
- Log in to Huawei Cloud as the organization administrator or using the management account, navigate to the Organizations console, and access the Organization page.
- Select the OU or account you want to attach the SCP to.
- On the details page, click the Policies tab. On the displayed tab, expand Service control policies and click Attach.
- Select the policy to be added and enter "Confirm" in the text box. Then, click Attach.
Parent topic: Control Policies Supported by SWR
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
The system is busy. Please try again later.
For any further questions, feel free to contact us through the chatbot.
Chatbot
