Service roles and service-linked roles are predefined by Tencent Cloud services and, upon user authorization, the corresponding services can access and use resources by assuming these service-linked roles. This document provides detailed information on the use cases and associated authorization policies of these specific service-linked roles.
| Product | Role Name | Role Types | Role Entity |
|---|---|---|---|
| Cloud Virtual Desktop | CVD_QCSLinkedRoleInEIP | Service-Related Roles | eip.cvd.cloud.tencent.com |
| Cloud Virtual Desktop | CVD_QCSLinkedRoleInVPC | Service-Related Roles | vpc.cvd.cloud.tencent.com |
| Cloud Virtual Desktop | CVD_QCSLinkedRoleInSubnet | Service-Related Roles | subnet.cvd.cloud.tencent.com |
| Cloud Virtual Desktop | CVD_QCSLinkedRoleInNatGateway | Service-Related Roles | natgateway.cvd.cloud.tencent.com |
| Cloud Virtual Desktop | CVD_QCSLinkedRoleInRouteTable | Service-Related Roles | routetable.cvd.cloud.tencent.com |
CVD_QCSLinkedRoleInEIP
Use Cases: The current role is the CVD service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
Authorization Polices
- Policy Name: QcloudAccessForCVDLinkedRoleInEIP
- Policy Information:
{ "statement": [ { "action": [ "cvm:AllocateAddresses", "cvm:ReleaseAddresses", "vpc:DescribeTaskResult", "cvm:DescribeAddresses", "cvm:ModifyAddressesBandwidth" ], "effect": "allow", "resource": "*" } ], "version": "2.0" }
CVD_QCSLinkedRoleInVPC
Use Cases: The current role is the CVD service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
Authorization Polices
- Policy Name: QcloudAccessForCVDLinkedRoleInVPC
- Policy Information:
{ "statement": [ { "action": [ "vpc:DescribeVpcs", "vpc:DescribeVpcEx", "vpc:ModifyNetworkInterfaceAttribute", "vpc:DescribeSecurityGroups", "vpc:ModifyNetworkInterface" ], "effect": "allow", "resource": "*" } ], "version": "2.0" }
CVD_QCSLinkedRoleInSubnet
Use Cases: The current role is the CVD service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
Authorization Polices
- Policy Name: QcloudAccessForCVDLinkedRoleInSubnet
- Policy Information:
{ "statement": [ { "action": [ "vpc:DescribeSubnets", "vpc:DescribeSubnetEx" ], "effect": "allow", "resource": "*" } ], "version": "2.0" }
CVD_QCSLinkedRoleInNatGateway
Use Cases: The current role is the CVD service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
Authorization Polices
- Policy Name: QcloudAccessForCVDLinkedRoleInNatGateway
- Policy Information:
{ "statement": [ { "action": [ "vpc:InquiryPriceNatGateway", "vpc:CreateNatGateway", "vpc:DeleteNatGateway", "vpc:DescribeNatGateways", "vpc:AssociateNatGatewayAddress", "vpc:DisassociateNatGatewayAddress", "cvm:ModifyAddressesBandwidth", "cvm:DisassociateAddress", "cvm:AssociateAddress" ], "effect": "allow", "resource": "*" } ], "version": "2.0" }
CVD_QCSLinkedRoleInRouteTable
Use Cases: The current role is the CVD service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
Authorization Polices
- Policy Name: QcloudAccessForCVDLinkedRoleInRouteTable
- Policy Information:
{ "statement": [ { "action": [ "vpc:CreateRouteTable", "vpc:DeleteRouteTable", "vpc:DescribeRouteTables", "vpc:DeleteRoutes", "vpc:CreateRoutes", "vpc:DescribeRouteTable", "vpc:CreateRoute" ], "effect": "allow", "resource": "*" } ], "version": "2.0" }
Feedback