Help Center/ VPC Endpoint/ User Guide (Kuala Lumpur Region)/ VPC Endpoint Services/ Managing Whitelist Records of a VPC Endpoint Service
Updated on 2023-12-20 GMT+08:00

Managing Whitelist Records of a VPC Endpoint Service

Scenarios

Permission management controls the access of a VPC endpoint in one to a VPC endpoint service in another.

After a VPC endpoint service is created, you can add or delete an authorized ID to and from the whitelist of the VPC endpoint service.

  • If the whitelist is empty, access from a VPC endpoint in another is not allowed.
  • If an authorized ID is already in the whitelist, you can use this to create a VPC endpoint for connecting to the VPC endpoint service.
  • If an authorized ID is not in the whitelist, you cannot use this to create a VPC endpoint for connecting to the VPC endpoint service.

This section describes how to add or delete a whitelist record for a VPC endpoint service.

Constraints

  • The VPC endpoint and the VPC endpoint service must be deployed in the same region.
  • Before you configure the whitelist for a VPC endpoint service, obtain the ID of the associated VPC endpoint.

Add a Whitelist Record

  1. Log in to the management console.
  2. Click in the upper left corner and select the required region and project.
  1. Click Service List and choose Networking > VPC Endpoint.
  1. In the navigation pane on the left, choose VPC Endpoint > VPC Endpoint Services.
  2. In the VPC endpoint service list, locate the target VPC endpoint service and click its name.
  3. On the displayed page, select the Permission Management tab and click Add to Whitelist.
  4. Enter an authorized ID in the required format and click OK.
    • Your is in the whitelist of your VPC endpoint service by default.
    • The authorized ID is in the iam:domain::domain_id format.

      domain_id indicates the ID of the authorized , for example, iam:domain::1564ec50ef2a47c791ea5536353ed4b9

    • Adding * to the whitelist means that all users can access the VPC endpoint service.

Delete a Whitelist Record

  1. Log in to the management console.
  2. Click in the upper left corner and select the required region and project.
  1. Click Service List and choose Networking > VPC Endpoint.
  1. In the navigation pane on the left, choose VPC Endpoint > VPC Endpoint Services.
  2. In the VPC endpoint service list, locate the target VPC endpoint service and click its name.
  3. On the displayed page, click the Permission Management tab, locate the target ID, and click Delete in the Operation column.

    To delete multiple whitelist records, select all the target IDs and click Delete in the upper left corner.

  4. In the displayed Delete from Whitelist dialog box, click Yes.