tencent cloud

Cloud Security Center

Product Introduction
Product Overview
Purchase Guide
Billing Overview
Purchase Methods
Renewal Policies
Overdue Payment ‍Policies
Refund Policies
Getting Started
Operation Guide
Access Permissions Management
Multi-Cloud Multi-Account Management
Vulnerability and Risk Center
Alarm Center
Log Shipping
Managing Assets
Health Checks
Cloud API Exception Monitoring
User Behavior Analytics (UEBA)
Report Download
API Documentation
History
Introduction
API Category
Making API Requests
Multi-account management related APIs
Scan Task APIs
Risk Center APIs
Asset Center APIs
Cloud Boundary Analysis APIs
Cloud API Anomaly Detection APIs
Report Download APIs
Solid Protection APIs
Cloud Security Center Overview APIs
Data Types
Error Codes
Related Protocol,
Service Level Agreement
Terms Of Service
FAQs
Glossary
DocumentationCloud Security CenterOperation GuideAccess Permissions Management

Access Permissions Management

PDF
Focus Mode
Font Size
Last updated: 2024-08-02 10:14:18
This document will guide you on how to view and use permissions for specific resources in Cloud Security Center (CSC), and how to use policies for specific sections of the CSC console.

Overview

You can grant a user permission to view and use specific resources in the CSC console by using a Cloud Access Management (CAM) policy.

SOC Full Access Policy

If you want users to have Management Permissions to the CSC, you can grant them the policy named QcloudSSAFullAccess. This policy allows users to have management permissions for all resources in CSC. To authorize users with the preset policy QcloudSSAFullAccess, see directions.

SOC Read-Only Policy

If you want users to have query permissions to the CSC, but don't have the creation, deletion and processing permissions, you can grant them the policy named QcloudSSAReadOnlyAccess. To authorize users with the preset policy QcloudSSAReadOnlyAccess, see directions.

Policy For SOC-related Resources

If you want users to have usage permissions to the CSC cloud assets, compliance management, cloud security configuration, response center, and UBA, you can grant them the policy named QcloudAuditFullAccess. This policy allows users to have operational permissions for all resources in CloudAudit, thereby achieving their goals. To authorize users with the preset policy QcloudSSAReadOnlyAccess, see directions.

Directions

1. Log in to the CAM console. In the left sidebar, click Policies to enter the policy page.
2. On the search box on the policy page, enter the policy name (search as needed), such as by entering QcloudCCNFullAccess to search.
3. In the action bar on the right side of the QcloudSSAFullAccess policy, click Associate User/User Group/Role.

4. On the associating user/user group/role page, select the sub-user that needs permission configuration, and click OK.


Previous Topic: Getting StartedNext Topic: Multi-Cloud Connection

Help and Support

Was this page helpful?

Help us improve! Rate your documentation experience in 5 mins.

Feedback