全部文档
当前文档

暂无内容

如果没有找到您期望的内容,请尝试其他搜索词

文档中心

策略示例

最近更新时间:2022-02-24 11:15:45

示例1:禁止修改和删除IAM用户、IAM用户组、IRAM角色

{
“Version”: “2015-11-01”,
“Statement”: [
{
"
“Effect”: “Deny”,
“Action”: [
“iam:DeleteUser”,
“iam:ChangePassword”,
“iam:UpdateLoginProfile”,
“iam:DeleteGroup”,
“iam:RemoveUserFromGroup”,
“iam:UpdateGroup”,
“iam:DeleteRole”,
“iam:AttachRolePolicy”,
“iam:DetachRolePolicy”,
“iam:UpdateRoleTrustAccounts”,
“iam:AttachUserPolicy”,
“iam:DetachGroupPolicy”,
“iam:AttachGroupPolicy”,
“iam:CreateAccessKey”,
“iam:UpdateAccessKey”,
“iam:DeleteAccessKey”
],
“Resource”: “*”
}
]
}

禁止修改操作审计的投递地址、禁止关闭投递功能

{
“Version”: “2015-11-01”,
“Statement”: [
{

		"Effect": "Deny",
		"Action": [
			"actiontrail:DeleteTrail",
			"actiontrail:UpdateTrail",
			"actiontrail:StopTrail"
		],
		"Resource": "*",
		"Condition": []
	}
]

}

文档导读
纯净模式常规模式

纯净模式

点击可全屏预览文档内容
文档反馈