Help & Documentation>SSL Certificates>Cloud Access Management>Sample Access Control Policy

Sample Access Control Policy

Last updated: 2024-10-17 12:50:38

On this page:

SSL full read-write policy

Grant full read-write access (including creation and management) to a sub-user or collaborator.
Policy Name: QcloudSSLFullAccess
{
"version": "2.0",
"statement": [
  {
    "action": [
          "ssl:*"
    ],
    "resource": "*",
    "effect": "allow"
  }
]
}

SSL read-only policy

Authorize a sub-user with read-only access to SSL certificates (i.e., the ability to view all resources under SSL), but they cannot create, update, or delete them. In the console, the prerequisite for operating a resource is the ability to view it, so it is recommended to grant full read access to SSL for sub-accounts.
Policy Name: QcloudSSLReadOnlyAccess
{
"version": "2.0",
"statement": [
  {
    "action": [
          "ssl:Describe*"
    ],
    "resource": "*",
    "effect": "allow"
  }
]
}

中国站 - English