Product Introduction
Purchase Guide
Getting Started
User Guide
- Overview
- Users
- Access Key
- User Groups
- Role
- Identity Provider
- Policies
- Permissions Boundary
- Troubleshooting
- Downloading Security Analysis Report
CAM-Enabled Role
- Overview
- Compute
- Container
- Microservice
- Essential Storage Service
- Data Process and Analysis
- Data Migration
- Relational Database
- Enterprise Distributed DBMS
- NoSQL Database
- Database SaaS Tool
- Database SaaS Service
- Networking
- CDN and Acceleration
- Network Security
- Data Security
- Application Security
- Domains & Websites
- Big Data
- Tencent Big Model
- Middleware
- Interactive Video Services
- Real-Time Interaction
- Media On-Demand
- Media Process Services
- Media Process
- Cloud Real-time Rendering
- Game Services
- Cloud Resource Management
- Management and Audit Tools
- Developer Tools
- Monitor and Operation
- More
CAM-Enabled API
- Overview
- Compute
- Edge Computing
- Container
- Distributed cloud
- Microservice
- Serverless
- Essential Storage Service
- Data Process and Analysis
- Data Migration
- Relational Database
- Enterprise Distributed DBMS
- NoSQL Database
- Database SaaS Tool
- Networking
- CDN and Acceleration
- Network Security
- Endpoint Security
- Data Security
- Business Security
- Application Security
- Domains & Websites
- Office Collaboration
- Big Data
- Voice Technology
- Image Creation
- Tencent Big Model
- AI Platform Service
- Natural Language Processing
- Optical Character Recognition
- Middleware
- Communication
- Interactive Video Services
- Real-Time Interaction
- Stream Services
- Media On-Demand
- Media Process Services
- Media Process
- Cloud Real-time Rendering
- Game Services
- Education Sevices
- Medical Services
- Cloud Resource Management
- Management and Audit Tools
- Developer Tools
- Monitor and Operation
- More
Use Cases
- Security Practical Tutorial
- Multi-Identity Personnel Permission Management
- Authorizing Certain Operations by Tag
- Supporting Isolated Resource Access for Employees
- Enterprise Multi-Account Permissions Management
- Reviewing Employee Operation Records on Tencent Cloud
- Implementing Attribute-Based Access Control for Employee Resource Permissions Management
- During tag-based authentication, only tag key matching is supported
Business Use Cases
- TencentDB for MySQL
- CLB
- CMQ
- COS
- CVM
- VPC
- VOD
- Others
API Documentation
- History
- Introduction
- API Category
- Making API Requests
- User APIs
- Policy APIs
- Role APIs
- Identity Provider APIs
- Data Types
- Error Codes
FAQs
Glossary

Creating Custom Polices through Tag Authorization

포커스 모드

폰트 크기

마지막 업데이트 시간: 2024-01-23 17:54:33

Overview
This document describes the process of creating customized policies through tag authorization. After the policy is generated, it will possess the authority over a category of tag attribute resources. For definitions related to the policy, please refer to Concepts.
Directions
1. On the Policies page of the Cloud Access Management Console, click Create Custom Policy in the upper left corner.
2. In the pop-up window for selecting the creation method, click Authorize by Tag to navigate to the page for tag-based authorization.
3. In the service and action addition area of the Visual Policy Generator, enter the following information, and edit an authorization statement.
Service (Required): Select the product to be authorized.
Action (required): Select the actions you want to authorize.
Note
The operation involves all interfaces of the service. You can filter and view whether an interface supports tag-based authorization by using the "Supports Authorization by Tag" filter.
Yes: Supports tag-based authorization, which will include operation permissions for resources associated with corresponding tags.
No: Does not support tag-based authorization, which will include operation permissions for all resources.
To support the authorization of multiple services, click "Add" in the upper left corner to continue adding multiple authorization statements and configure authorization policies for other services.
Multiple statements can be added to one policy.
4. In the Select Tag section, choose the tag information that needs to be authorized. You can add multiple tags. Click Next to proceed to the Associate User/User Group/Role page.
﻿
5. On the Associate User/User Group/Role page, enter the policy name and description information. You can also associate users/user groups/roles for quick authorization.
Note
The policy name is automatically generated by the console, with the default prefix "policygen" and a suffix number according to the creation date. You can customize the name as needed.
6. Click Complete to finish creating the customized policy.
﻿
Subsequent Procedures
Authorization Management

도움말 및 지원

문제 해결에 도움이 되었나요?

더 자세한 내용은 문의하기 또는 티겟 제출 을 통해 문의할 수 있습니다.

피드백

tencent cloud

Cloud Access Management

Creating Custom Polices through Tag Authorization

Overview

Directions

Subsequent Procedures

도움말 및 지원