文档反馈官招募中,报名立赚积分兑换代金券!> HOT
文档中心>访问管理>支持角色的业务>大数据>数据分析>腾讯云数据仓库 TCHouse-X

腾讯云数据仓库 TCHouse-X

最近更新时间:2026-02-16 09:46:18

我的收藏

本页目录:

服务(相关)角色是由腾讯云服务预定义,经用户授权后相应服务即可通过扮演服务相关角色对用户资源进行访问操作。本文档介绍具体服务相关角色的使用场景及相关权限策略信息。

CAM中产品名 角色名称 角色类型 角色载体
腾讯云数据仓库 TCHouse-X TCHOUSEX_QCSLinkedRoleInCLS 服务相关角色 cls.tchousex.cloud.tencent.com
腾讯云数据仓库 TCHouse-X TCHOUSEX_QCSLinkedRoleInTCLake 服务相关角色 tclake.tchousex.cloud.tencent.com
腾讯云数据仓库 TCHouse-X TCHOUSEX_QCSLinkedRoleInTCHOUSEX 服务相关角色 tchousex.tchousex.cloud.tencent.com

TCHOUSEX_QCSLinkedRoleInCLS

使用场景: 当前角色为腾讯云数据仓库 TCHouse-X (TCHOUSEX) 服务相关角色,用于授权TCHouse-X访问日志服务 (CLS) 资源,该角色将在已关联策略的权限范围内访问。
权限策略

  • 策略名称: QcloudAccessForTCHOUSEXLinkedRoleInCLS
  • 策略内容:
    {
    "version": "2.0",
    "statement": [
        {
            "effect": "allow",
            "action": [
                "cls:pushLog",
                "cls:agentHeartBeat",
                "cls:getConfig",
                "cls:CreateConfig",
                "cls:DeleteConfig",
                "cls:ModifyConfig",
                "cls:DescribeConfigs",
                "cls:DescribeMachineGroupConfigs",
                "cls:DeleteConfigFromMachineGroup",
                "cls:ApplyConfigToMachineGroup",
                "cls:DescribeConfigMachineGroups",
                "cls:ModifyTopic",
                "cls:DeleteTopic",
                "cls:CreateTopic",
                "cls:DescribeTopics",
                "cls:CreateLogset",
                "cls:DeleteLogset",
                "cls:DescribeLogsets",
                "cls:CreateIndex",
                "cls:ModifyIndex",
                "cls:CreateMachineGroup",
                "cls:DeleteMachineGroup",
                "cls:DescribeMachineGroups",
                "cls:ModifyMachineGroup",
                "cls:CreateConfigExtra",
                "cls:DeleteConfigExtra",
                "cls:ModifyConfigExtra"
            ],
            "resource": "*"
        }
    ]
}

TCHOUSEX_QCSLinkedRoleInTCLake

使用场景: 当前角色为腾讯云数据仓库 TCHouse-X (TCHOUSEX) 服务相关角色,用于授权TCHouse-X访问TCLake资源,该角色将在已关联策略的权限范围内访问。
权限策略

  • 策略名称: QcloudAccessForTCHOUSEXLinkedRoleInTCLake
  • 策略内容:
    {
    "version": "2.0",
    "statement": [
        {
            "effect": "allow",
            "action": [
                "vpc:DescribeVpcEndPointService",
                "vpc:DescribeVpcEndPoint",
                "tccatalog:DropCatalog",
                "tccatalog:DescribeCatalog",
                "tccatalog:DescribeMetastoreInstances",
                "tccatalog:CreateCatalog",
                "tccatalog:CreateTCCatalogEndpoint",
                "tccatalog:DescribeCatalogs",
                "tccatalog:DescribeTccCatalog",
                "tccatalog:CreateUsers",
                "tccatalog:DescribeUsers",
                "tccatalog:DescribeRoles",
                "tccatalog:DescribeRolePermissionList",
                "tccatalog:DescribeCatalogNames",
                "tccatalog:DescribeTccCatalogs",
                "tccatalog:CreateRole",
                "tccatalog:DeleteRoles",
                "tccatalog:GrantRolesToUser",
                "tccatalog:GrantUsersToRole",
                "tccatalog:RevokeRolesFromUser",
                "tccatalog:RevokeUsersFromRole",
                "tccatalog:GrantPermissionToRole",
                "tccatalog:RevokePermissionToRole",
                "tccatalog:DeleteUsers",
                "tccatalog:ModifyUser",
                "tccatalog:ModifyRole",
                "tccatalog:CheckUserRoleGranted",
                "cam:ListMaskedSubAccounts",
                "tccatalog:DescribeStorageUsage",
                "tccatalog:SetMetadataObjectOwner",
                "tccatalog:DescribeMetastoreInstance",
                "tccatalog:GrantPermissionToUser",
                "tccatalog:RevokePermissionToUser",
                "tccatalog:DescribeRolesPrivilegeList",
                "tccatalog:CreateMetastoreInstance",
                "tccatalog:DescribeMetadataObjectsOwner",
                "tccatalog:DescribeMetadataObjectOwner",
                "tccatalog:UpdatePermissionToResource",
                "tccatalog:DescribePrivilegesPointList",
                "tccatalog:DescribeTccVipInternal",
                "tccatalog:CheckCatalogConnectivity",
                "tccatalog:CheckServiceRoleGranted",
                "tccatalog:CreateSchema",
                "tccatalog:CreateVolume",
                "tccatalog:DescribeRegionWhitelist",
                "tccatalog:DescribeSchema",
                "tccatalog:DescribeSchemaNames",
                "tccatalog:DescribeSupportCatalogType",
                "tccatalog:DescribeUsageStatistics",
                "tccatalog:ModifyCatalog",
                "tccatalog:DescribeFrontMenuWhitelist",
                "tccatalog:DescribeStorageUsageTrends",
                "tccatalog:AcceptTccVpcEndPointConnect",
                "tccatalog:BindTccVpcEndPointServiceWhiteList",
                "tccatalog:CheckUserExists",
                "tccatalog:DescribeCatalogNamesPage",
                "tccatalog:SyncAllCamUsers",
                "tccatalog:ModifyCatalogProperties",
                "tccatalog:AssociateTagsWithMetadataObject",
                "tccatalog:DescribeCatalogsByNames",
                "tccatalog:ModifyCatalogName",
                "tccatalog:DescribeSchemas",
                "tccatalog:DescribeTableNames",
                "tccatalog:DropTable",
                "tccatalog:DropSchema",
                "tccatalog:*"
            ],
            "resource": "*"
        }
    ]
}

TCHOUSEX_QCSLinkedRoleInTCHOUSEX

使用场景: 当前角色为腾讯云数据仓库 TCHouse-X (TCHOUSEX)服务相关角色,该角色将在已关联策略的权限范围内访问您的其他云服务资源。
权限策略

  • 策略名称: QcloudAccessForTCHOUSEXLinkedRoleInTCHOUSEX
  • 策略内容:
    {
    "version": "2.0",
    "statement": [
        {
            "effect": "allow",
            "action": [
                "cos:GetService",
                "cos:GetBucket",
                "cos:ListMultipartUploads",
                "cos:GetObject*",
                "cos:HeadObject",
                "cos:GetBucketObjectVersions",
                "cos:OptionsObject",
                "cos:ListParts",
                "cos:DeleteObject",
                "cos:PostObject",
                "cos:PostObjectRestore",
                "cos:PutObject*",
                "cos:InitiateMultipartUpload",
                "cos:UploadPart",
                "cos:UploadPartCopy",
                "cos:CompleteMultipartUpload",
                "cos:AbortMultipartUpload",
                "cos:DeleteMultipleObjects",
                "cos:AppendObject",
                "cos:HeadBucket",
                "cos:GetBucket*",
                "cos:PutBucket*",
                "cos:DeleteBucket*",
                "cos:RenameObject",
                "chdfs:DescribeMountPoint",
                "chdfs:DescribeFileSystem",
                "chdfs:DescribeAccessGroups",
                "chdfs:DescribeAccessRules",
                "chdfs:ModifyFileSystem",
                "chdfs:ModifyAccessRules",
                "chdfs:CreateAccessGroup",
                "chdfs:CreateAccessRules",
                "chdfs:AssociateAccessGroups",
                "chdfs:DisassociateAccessGroups",
                "chdfs:DeleteAccessGroup",
                "chdfs:DeleteAccessRules"
            ],
            "resource": "*"
        }
    ]
}
中国站
目录