tencent cloud

Feedback

Tencent Cloud Lighthouse

Last updated: 2024-11-26 10:00:37

    Service roles and service-linked roles are predefined by Tencent Cloud services and, upon user authorization, the corresponding services can access and use resources by assuming these service-linked roles. This document provides detailed information on the use cases and associated authorization policies of these specific service-linked roles.

    Product Role Name Role Types Role Entity
    Lighthouse Lighthouse_QCSLinkedRoleInBasic Service-Related Roles basic.lighthouse.cloud.tencent.com
    Lighthouse Lighthouse_QCSLinkedRoleInCOSAndCI Service-Related Roles cosandci.lighthouse.cloud.tencent.com
    Lighthouse Lighthouse_QCSLinkedRoleInDnsAndSsl Service-Related Roles dnsandssl.lighthouse.cloud.tencent.com
    Lighthouse Lighthouse_QCSLinkedRoleInLighthouseSmartDiagnostic Service-Related Roles lighthousesmartdiagnostic.lighthouse.cloud.tencent.com

    Lighthouse_QCSLinkedRoleInBasic

    Use Cases: The current role is the Lighthouse service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
    Authorization Polices

    • Policy Name: QcloudAccessForLighthouseLinkedRoleInBasic
    • Policy Information:
    {
        "version": "2.0",
        "statement": [
            {
                "action": [
                    "vpc:*",
                    "cvm:*",
                    "tat:*"
                ],
                "resource": "*",
                "effect": "allow"
            }
        ]
    }
    

    Lighthouse_QCSLinkedRoleInCOSAndCI

    Use Cases: The current role is the Lighthouse service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
    Authorization Polices

    • Policy Name: QcloudAccessForLighthouseLinkedRoleInCOSAndCI
    • Policy Information:
    {
        "version": "2.0",
        "statement": [
            {
                "action": [
                    "cos:*",
                    "ci:*"
                ],
                "resource": "*",
                "effect": "allow"
            }
        ]
    }
    

    Lighthouse_QCSLinkedRoleInDnsAndSsl

    Use Cases: The current role is the Lighthouse service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
    Authorization Polices

    • Policy Name: QcloudAccessForLighthouseLinkedRoleInDnsAndSsl
    • Policy Information:
    {
        "version": "2.0",
        "statement": [
            {
                "action": [
                    "kms:GetServiceStatus",
                    "kms:ListKeyDetail",
                    "kms:CreateKey",
                    "kms:Decrypt",
                    "kms:Encrypt",
                    "kms:GenerateDataKey",
                    "kms:BindCloudResource",
                    "kms:UnbindCloudResource",
                    "ssl:*",
                    "tat:*",
                    "dnspod:*",
                    "domain:*"
                ],
                "resource": "*",
                "effect": "allow"
            }
        ]
    }
    

    Lighthouse_QCSLinkedRoleInLighthouseSmartDiagnostic

    Use Cases: The current role is the Lighthouse service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
    Authorization Polices

    • Policy Name: QcloudAccessForLighthouseLinkedRoleInLighthouseSmartDiagnostic
    • Policy Information:
    {
        "version": "2.0",
        "statement": [
            {
                "action": [
                    "tat:DescribeAutomationAgentStatus",
                    "tat:RunCommand",
                    "tat:DescribeInvocationTasks",
                    "cwp:DescribeMachineInfo",
                    "cwp:DescribeMalWareList",
                    "cwp:DescribeHostLoginList",
                    "cwp:DescribeBruteAttackList",
                    "cwp:DescribeRiskDnsList",
                    "cwp:DescribeBashEvents"
                ],
                "resource": "*",
                "effect": "allow"
            }
        ]
    }
    
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support