Cloud Access Management
- Product Introduction
- Getting Started
- User Guide
- Users
- Sub-Users
- Sub-User Security Credentials
- Collaborators
- Collaborator Security Credentials
- Message Recipients
- User Settings
- User Groups
- Role
- Identity Provider
- User-Based SSO
- Role-Based SSO
- Policies
- Definition
- Authorization Guide
- Syntax Logic
- Element Reference
- CAM-Enabled Role
- Container
- Microservice
- Essential Storage Service
- Data Process and Analysis
- Data Migration
- Relational Database
- Enterprise Distributed DBMS
- NoSQL Database
- Database SaaS Tool
- Networking
- CDN and Acceleration
- Network Security
- Data Security
- Application Security
- Domains & Websites
- Big Data
- Middleware
- Interactive Video Services
- Media On-Demand
- Cloud Real-time Rendering
- Game Services
- Cloud Resource Management
- Management and Audit Tools
- Monitor and Operation
- CAM-Enabled API
- Compute
- Edge Computing
- Distributed cloud
- Microservice
- Serverless
- Essential Storage Service
- Data Process and Analysis
- Data Migration
- Relational Database
- Enterprise Distributed DBMS
- Database SaaS Tool
- CDN and Acceleration
- Network Security
- Endpoint Security
- Business Security
- Application Security
- Domains & Websites
- Big Data
- Voice Technology
- Image Creation
- AI Platform Service
- Natural Language Processing
- Optical Character Recognition
- Interactive Video Services
- Stream Services
- Media On-Demand
- Media Process Services
- Cloud Real-time Rendering
- Game Services
- Education Sevices
- Cloud Resource Management
- Management and Audit Tools
- Monitor and Operation
- Practical Tutorial
- Supporting Isolated Resource Access for Employees
- Enterprise Multi-Account Permissions Management
- Implementing Attribute-Based Access Control for Employee Resource Permissions Management
- Business Use Cases
- TencentDB for MySQL
- CLB
- CMQ
- COS
- CVM
- VPC
- API Documentation
- User APIs
- Role APIs
- Making API Requests
- Identity Provider APIs
- Policy APIs
Tencent Cloud EdgeOne
Last updated: 2025-03-26 10:08:48
Service roles and service-linked roles are predefined by Tencent Cloud services and, upon user authorization, the corresponding services can access and use resources by assuming these service-linked roles. This document provides detailed information on the use cases and associated authorization policies of these specific service-linked roles.
| Product | Role Name | Role Types | Role Entity |
|---|---|---|---|
| Tencent Cloud EdgeOne | TEO_QCSLinkedRoleInCertlist | Service-Related Roles | certlist.teo.cloud.tencent.com |
| Tencent Cloud EdgeOne | TEO_QCSLinkedRoleInUpstreamgw | Service-Related Roles | upstreamgw.teo.cloud.tencent.com |
| Tencent Cloud EdgeOne | TEO_QCSLinkedRoleInDnspodaccessEO | Service-Related Roles | DnspodaccesEO.TEO.cloud.tencent.com |
| Tencent Cloud EdgeOne | TEO_QCSLinkedRoleInRealTimeLogCLS | Service-Related Roles | realtimelogcls.teo.cloud.tencent.com |
TEO_QCSLinkedRoleInCertlist
Use Cases: The current role is the TEO service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
Authorization Polices
- Policy Name: QcloudAccessForTEOLinkedRoleInCertlist
- Policy Information:
{
"version": "2.0",
"statement": [
{
"effect": "allow",
"resource": [
"*"
],
"action": [
"ssl:DescribeCertificate",
"ssl:DescribeCertificateDetail",
"ssl:DescribeCertificates",
"ssl:DownloadCertificate",
"ssl:ModifyCertificateAlias",
"ssl:UploadCertificate"
]
}
]
}
TEO_QCSLinkedRoleInUpstreamgw
Use Cases: The current role is the teo service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
Authorization Polices
- Policy Name: QcloudAccessForTEOLinkedRoleInUpstreamgw
- Policy Information:
{
"statement": [
{
"action": [
"vpc:DescribeVpcs",
"vpc:DescribeSubnets",
"vpc:DescribeDirectConnectGateways"
],
"effect": "allow",
"resource": [
"*"
]
}
],
"version": "2.0"
}
TEO_QCSLinkedRoleInDnspodaccessEO
Use Cases: The current role is the TEO service linked role, which will query the status of the domain name you have connected to the DNSPod product and related resolution records within the scope of the associated policy, and help you quickly complete the resolution modification in the scenario of one-click resolution modification, which will accelerate the service switch to EO.
Authorization Polices
- Policy Name: QcloudAccessForteoLinkedRoleInDnspodaccesEO
- Policy Information:
{
"version": "2.0",
"statement": [
{
"effect": "allow",
"action": [
"dnspod:CreateRecord",
"dnspod:ModifyRecordStatus",
"dnspod:DescribeRecordList",
"dnspod:ModifyRecord",
"dnspod:DescribeDomain"
],
"resource": "*"
}
]
}
TEO_QCSLinkedRoleInRealTimeLogCLS
Use Cases: The current role is the TEO service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
Authorization Polices
- Policy Name: QcloudAccessForTEORealTimeLogCLS
- Policy Information:
{
"version": "2.0",
"statement": [
{
"action": [
"cls:pushLog",
"cls:searchLog",
"cls:listLogset",
"cls:getLogset",
"cls:listTopic",
"cls:getTopic",
"cls:createTopic",
"cls:modifyTopic",
"cls:deleteTopic",
"cls:createLogset",
"cls:modifyLogset",
"cls:deleteLogset",
"cls:downloadLog",
"cls:getIndex",
"cls:modifyIndex",
"cls:CreateIndex"
],
"resource": "*",
"effect": "allow"
}
]
}
Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No