Search_HUAWEI CLOUD

Document Database Service (DDS) - Organizations

/v3/{project_id}/backups/{backups_id} dds:backup:delete - GET /v3/{project_id}/backups?

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Databases
Data Encryption Workshop (DEW) - Organizations

PUT /v1/{project_id}/dew/clusters/{cluster_id} dhsm:cluster:update - DELETE /v1/{project_id}/dew/clusters/{cluster_id} dhsm:cluster:delete - POST /v1/{project_id}/dew/clusters/{cluster_id}/vsms dhsm:cluster:addVsm - POST /v1/{project_id}/dew/clusters/{cluster_id}/cert dhsm:cluster

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Security & Compliance
ServiceStage - Organizations
ServiceStage - Organizations

/v2/{project_id}/cas/environments/{environment_id} servicestage:environment:delete - GET /v2/{project_id}/cas/environments/{environment_id} servicestage:environment:get - PATCH /v2/{project_id}/cas/environments/{environment_id}/resources servicestage:environment:modify - POST /v2

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Developer Services
Enabling or Disabling a Trusted Service - Organizations

Before disabling trusted access for the LTS service, delete the configurations of multi-account log aggregation on the LTS console and then disable the trusted access on the Organizations console.

Help > Organizations > User Guide > Managing Trusted Services
Elastic IP (EIP) - Organizations
Elastic IP (EIP) - Organizations

/v1/{project_id}/publicips/{publicip_id} eip:publicIps:delete - DELETE /v2/{project_id}/batchpublicips eip:publicIps:delete - POST /v2.0/{project_id}/publicips/{publicip_id}/tags/action eip:publicIps:createTags - POST 01 /v2.0/{project_id}/publicips/{publicip_id}/tags/action eip:

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Networking
Cost Center - Organizations
Cost Center - Organizations

Grants permission to disable Cost Center functions. write - - costCenter:costdetailreport:viewReportTask Grants permission to view the task list for exporting cost details to OBS. read - - costCenter:costdetailreport:configReportTask Grants permission to create, modify, or delete

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > User Support
SoftWare Repository for Container (SWR) - Organizations

Permission_management repo * - - swr:TargetAccountId swr:TargetOrgPath swr:TargetOrgId swr:repo:deleteRepoShare (Shared Edition) Grants permission to delete an image sharing policy.

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Containers
Cloud Native Anti-DDoS Basic (Anti-DDoS) - Organizations

Grant permission to delete default Anti-DDoS protection policies. write - - anti-ddos:defaultDefensePolicy:create Grant permission to configure default Anti-DDoS protection policies. write - - anti-ddos:alertConfig:update Grant permission to update alarm configurations. write - -

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Security & Compliance > Advanced Anti-DDoS (AAD)
Distributed Message Service for RabbitMQ - Organizations

dms:plugin:modifyStatus - POST /v2/{engine}/{project_id}/instances dms:instance:create vpc:vpcs:get vpc:vpcs:list vpc:ports:get vpc:ports:create vpc:ports:update vpc:ports:delete vpc:securityGroups:get vpc:subnets:get eip:publicIps:get eip:publicIps:list eip:publicIps:update GET

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Middleware
Elastic Volume Service (EVS) - Organizations

Grants permission to delete disks. write volume * g:ResourceTag/<tag-key> g:EnterpriseProjectId evs:volumes:update Grants permission to update disks. write volume * g:ResourceTag/<tag-key> g:EnterpriseProjectId evs:volumes:resize Grants permission to expand disk capacities. write

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Storage
Removing a Member Account from Your Organization - Organizations

To prevent unauthorized access, you need to manually delete the agency. For details, see Deleting an Agency.

Help > Organizations > User Guide > Managing Accounts
Actions - Organizations
Actions - Organizations

an organization POST /v1/organizations organizations:organizations:create iam:agencies:createServiceLinkedAgency Not supported Not supported Getting organization information GET /v1/organizations organizations:organizations:get Not supported Not supported Deleting an organization DELETE

Help > Organizations > API Reference > Permissions and Supported Actions
Elastic Cloud Server (ECS) - Organizations

/<tag-key> g:TagKeys ecs:cloudServers:batchDeleteServerTags Grants permission to delete tags from an ECS in a batch. write instance * g:RequestTag/<tag-key> g:TagKeys ecs:cloudServers:start Grants permission to start ECSs in a batch. write instance * - ecs:cloudServers:stop Grants

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Compute
IAM Identity Broker - Organizations
IAM Identity Broker - Organizations

List - - AgenciesAnywhere:profile:delete Grants permission to delete a profile. Write profile * - - g:ResourceTag/<tag-key> AgenciesAnywhere::listResourcesByTag Grants permission to list resources or the resource quantity by tag.

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Management & Governance
Resource Governance Center (RGC) - Organizations

Write - - - rgc:template:delete Grants permission to delete a template. Write - - - rgc:predefinedTemplate:list Grants permission to list preset templates. List - - - rgc:managedAccountTemplate:get Grants permission to get details of a template for enrolled accounts.

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Management & Governance
IAM Access Analyzer - Organizations
IAM Access Analyzer - Organizations

Write archiveRule * - AccessAnalyzer:archiveRule:delete Grants permission to delete an archive rule for the specified access analyzer. Write archiveRule * - AccessAnalyzer:archiveRule:apply Grants permission to apply an archive rule.

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Management & Governance
Relational Database Service (RDS) - Organizations

Grants permission to delete binlogs. write instance g:EnterpriseProjectId g:ResourceTag/<tag-key> rds:backup:delete Grants permission to delete a manual backup. write - - rds:backup:create Grants permission to create a manual backup. write - - rds:instance:buildDrRelation Grants

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Databases
Using SCPs to Control Permissions of Member Accounts - Organizations

Try to delete a resource share. If an error message is displayed, the SCP has been applied.

Help > Organizations > Getting Started
Making an API Request - Organizations
Making an API Request - Organizations

DELETE: requests the server to delete specified resources, for example, an object. HEAD: requests the server to return the response header only. PATCH: requests the server to update partial content of a specified resource.

Help > Organizations > API Reference > Calling APIs
Database Security Service (DBSS) - Organizations

Grant the permission to delete audit scope rules. write dbss:<region>:<account-id>:auditInstance:<instance-id> - dbss:auditInstance:deleteRiskRule Grant the permission to delete risk rules. write dbss:<region>:<account-id>:auditInstance:<instance-id> - dbss:auditInstance:deleteBackup

Help > Organizations > User Guide > Managing SCPs > Actions Supported by SCP-based Authorization > Security & Compliance

Total results: 109

Was this helpful?

Feedback

/200

Submit Cancel