tencent cloud

Feedback

Tencent Kubernetes Engine

Last updated: 2024-04-22 09:21:50

    Fundamental information

    Product Abbreviation in CAM Console Authorization by Tag Authorization Granularity IP Restriction
    Tencent Kubernetes Engine tke Supported Supported Resource level Partially supported

    Note:

    The authorization granularity of cloud products is divided into three levels: service level, operation level, and resource level, based on the degree of granularity.

    • Service level: It defines whether a user has the permission to access the service as a whole. A user can have either full access or no access to the service. For the authorization granularity of cloud products at service level, the authorization of specific APIs are not supported.
    • Operation level: It defines whether a user has the permission to call a specific API of the service. For example, granting an account read-only access to the CVM service is an authorization at the operation level.
    • Resource level: It is the finest authorization granularity which defines whether a user has the permission to access specific resources. For example, granting an account read/write access to a specific CVM instance is an authorization at the resource level.

    API authorization granularity

    Two authorization granularity levels of API are supported: resource level, and operation level.

    • Resource level: It supports the authorization of a specific resource.
    • Operation level: It does not support the authorization of a specific resource. If the policy syntax restricts a specific resource during authorization, CAM will determine that this API is not within the scope of authorization, and deem it as unauthorized.

    Write operations

    API API Description Authorization Granularity Six-segment Resource Description IP Restriction
    AcquireClusterAdminRole acquire cluster RBAC admin role Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    AcquireEKSClusterAdminRole Acquire the EKS cluster administrator role Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    AcquireTDCCClusterAdminRole acquire cluster admin role Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    AddClusterCIDR add cluster CIDRs to cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    AddClusterCIDRToCcn add cluster CIDRs to Cloud Connect Network Operation level * not supported
    AddExistedInstances Add existed nodes to cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    AddNodeToNodePool move nodes in a cluster to a node pool Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    AddVpcCniSubnets add subnets in the container network for a VPC-CNI cluster. Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId}
    qcs::tke:${region}:uin/${uin}:vpc/${vpcId}
    qcs::tke:${region}:uin/${uin}:subnet/${SubnetId}
    not supported
    CancelClusterRelease Cancel release installing Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    ConvertRegularToNativeNode Convert regular node to native node Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    CreateBackupStorageLocation Create Backup Storage Location Operation level * Supported
    CreateBootstrapToken Create BootstrapToken Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    CreateCLSLogConfig create log config Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    CreateCluster Create cluster Operation level * not supported
    CreateClusterAsGroup Create cluster autoscaler group Operation level * not supported
    CreateClusterEndpoint Enable cluster access endpoint Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    CreateClusterEndpointVip Enable cluster apiserver access endpoint Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    CreateClusterInstances Add nodes to cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    CreateClusterNodePool create a node pool Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    CreateClusterRelease Create release in cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    CreateClusterRoute create a cluster route in cluster route table Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    CreateClusterRouteTable create a cluster route table Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    CreateECMInstances Create TKEEdge ECM instance Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    CreateEKSContainerInstances create EKS Container Instance Operation level * Supported
    CreateEdgeCVMInstances Create TKEEdge CVM instance Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    CreateEdgeLogConfig Create TKEEdge cluster log collector config Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    CreateEksLogConfig create eks cluster log config Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    CreateExternalNodePool create node pool with type of externalNode Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    CreateHealthCheckPolicy Create health check policy Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    CreateInstantInspectJob create instant inspect job for tke cluster Resource level qcs::tke:${region}:uin/:cluster/${ClusterId} Supported
    CreateNodePool Create a TKE node pool Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    CreateReservedInstances Create Reserved Instances Operation level * Supported
    CreateTDCCExternalCluster create external cluster Operation level * not supported
    CreateTDCCHubCluster create hub cluster Operation level * not supported
    CreateTKEEdgeCluster Create TKEEdge cluster Operation level * Supported
    DeleteAddon delete addon Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DeleteBackupStorageLocation delete backup storage location Operation level * Supported
    DeleteBootstrapTokens Delete BootstrapToken Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DeleteCluster Delete clusters Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DeleteClusterAsGroups Delete cluster autoscaler groups Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DeleteClusterCIDRFromCcn delete cluster CIDRs from Cloud Connect Network Operation level * not supported
    DeleteClusterEndpoint Disable cluster access endpoint Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DeleteClusterEndpointVip Disable cluster apiserver access endpoint Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DeleteClusterInstances Delete nodes from cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DeleteClusterMachines Delete a hosted node pool node Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DeleteClusterNodePool delete a node pool Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DeleteClusterRoute delete a cluster route in cluster route table Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DeleteClusterRouteTable delete a cluster route table Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DeleteECMInstances Delete TKEEdge ECM instance Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DeleteEKSContainerInstances delete EKS Container Instances Operation level * Supported
    DeleteEdgeCVMInstances Delete TKEEdge CVM instance Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DeleteEdgeClusterInstances Delete TKEEdge cluster instance Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DeleteExternalNode Delete External Node Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DeleteExternalNodePool delete node pool of external node type Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DeleteHealthCheckPolicy Delete health check policy Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DeleteLogConfigs delete log configs Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DeleteNodePool Delete TKE node pool Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DeleteReservedInstances Delete Reserved Instances Operation level * Supported
    DeleteTDCCExternalCluster delete external cluster Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    DeleteTDCCHubCluster delete hub cluster Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    DeleteTKEEdgeCluster Delete TKE Edge Cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DisableClusterAudit disable cluster audit Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DisableClusterDeletionProtection Turn off cluster deletion protection Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DisableEdgeClusterAudit Disable TKEEdge cluster audit Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DisableEdgeEventPersistence Disable TKEEdge event persistence Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DisableEksAudit disable eks cluster audit logs Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    DisableEksEventPersistence disable eks cluster event persistence Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    DisableEncryptionProtection disable encrypted information protection Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DisableEventPersistence disable cluster event persistenece Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DisableMasterLog disable master log collect Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    DisableVpcCniNetworkType disable vpc cni network of a cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DrainClusterNode Drain nodes of clusters Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DrainExternalNode Drain External Node Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    EnableClusterAudit enable cluster audit Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    EnableClusterDeletionProtection Turn on cluster deletion protection Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    EnableEdgeClusterAudit Enable TKEEdge cluster audit Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    EnableEdgeEventPersistence Enable TKEEdge event persistence Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    EnableEksAudit enable els cluster audit logs Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    EnableEksEventPersistence enable eks cluster event persistence Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    EnableEncryptionProtection Enable encrypted data protection Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    EnableEventPersistence enable cluster event persistence Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    EnableExternalNodeSupport enable externalNode feature to cluster Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    EnableMasterLog enable master log collect Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    EnableVpcCniNetworkType enable vpc cni network of a cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    ForwardRequestTDCC forward kubernetes request Resource level qcs::tke::uin/${uin}:cluster/${ClusterId} not supported
    InstallAddon install addon Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    InstallEdgeLogAgent Install TKEEdge log agent Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    InstallEksLogAgent install log components to eks cluster Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    InstallLogAgent install log component to cluster Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    ModifyClusterAsGroupAttribute Modify autoscaler group attribute of cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    ModifyClusterAsGroupOptionAttribute Modify autoscaler group options atrribute of cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    ModifyClusterAttribute Modify attribute of cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    ModifyClusterAuthenticationOptions Modify the cluster authentication configuration Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    ModifyClusterDeletionProtectionState Modifying the status of cluster deletion protection Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    ModifyClusterEndpointSP Modify security group of cluster apiserver access endpoint Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    ModifyClusterImage modify the cluster image Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    ModifyClusterMachine Update TKE node Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    ModifyClusterNodePool modify a node pool Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    ModifyClusterRuntimeConfig modify the cluster runtime configuration Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    ModifyClusterSchedulerPolicy Modify the cluster scheduling policy Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    ModifyClusterUpgradingState Cluster Upgrade Mission Control Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    ModifyExternalNodePool Modify node pool of ExternalNode type Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    ModifyMachinesKeyIds modify some machine keyIds Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    ModifyNodePool Update TKE node pool Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    ModifyNodePoolDesiredCapacityAboutAsg Modify the desired number of instances for the scaling group corresponding to the node pool Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    ModifyOpenPolicyList modify OPA policy list for TKE clusters Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    ModifyReservedInstanceScope Modify Reserved Instance Scope Operation level * Supported
    OpUpgradeClusterInstances node upgrade task status control Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    PauseClusterInstances pause cluster upgrade Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    RebootMachines reboot tke native node Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    RemoveNodeFromNodePool remove nodes from a node pool but retain it in the cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    RenewReservedInstances Renew Reserved Instances Operation level * Supported
    ReservedResource reserve resource for reserved instance Resource level qcs::tke:${region}:uin/${uin}:eksri/${RiId} not supported
    RestartEKSContainerInstances Restart EKS Container Instances Operation level * Supported
    ResumeClusterInstances resume cluster upgrade Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    RollbackClusterRelease Rollback release Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    ScaleInClusterMaster Reduce master nodes Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    ScaleNodePool Set the expected node number of TKE node pool Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    ScaleOutClusterMaster Increase master nodes Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    SetMachineLogin Set whether to enable node login Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    SetMachineScaleDownProtection Whether the node enables scaling protection settings Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    UninstallClusterRelease Uninstall release Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    UninstallEdgeLogAgent Uninstall TKEEdge log agent Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    UninstallEksLogAgent remove log components from eks cluster Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    UninstallLogAgent uninstall log component to cluster Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    UpdateAddon update addon Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    UpdateClusterAuthStatus enable or disable the cluster to automatically clean up expired sub-accounts Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    UpdateClusterKubeconfig Update the kubeconfig information of the cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    UpdateClusterVersion upgrade cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    UpdateEKSContainerInstance update EKS Container Instance Operation level * Supported
    UpdateEdgeClusterVersion Update TKEEdge cluster version Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    UpdateTDCCClusterKubeconfig update custer kubeconfig Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    UpdateTDCCExternalCluster update external cluster Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    UpdateTDCCHubCluster update hub cluster Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    UpdateTKEEdgeCluster Update TKEEdge cluster information Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    UpdateTKEEdgeExternalKubeconfig Update TKEEdge external kubeconfig Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    UpdateUnitCluster Enable the public network access of the kins cluster of the edge cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    UpgradeClusterAuthorizationMode upgrade cluster authorization mode to RBAC Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    UpgradeClusterInstances upgrade cluster nodes Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    UpgradeClusterRelease Upgrade release Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    UpgradeEKSClusterAuthorizationMode Upgrade the EKS cluster authorization mode to RBAC Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    UpgradeLogAgent upgrade log component Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported

    Read operations

    API API Description Authorization Granularity Six-segment Resource Description IP Restriction
    CheckClusterCIDR check if cluster CIDRs are conflict with others Operation level * not supported
    CheckClusterRuntimeConfig check cluster runtime Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    CheckInstancesUpgradeAble whether the node can be upgraded Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    CheckSubaccountAuthority verify sub-account permissions Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeAddon describe addon Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeAddonValues describe addon values Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeAggregationData Display the aggregated data Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeAvailableClusterVersion get all versions that the cluster can upgrade Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeAvailableMajorVersion Obtain in batches whether the cluster can be upgraded to a major version Operation level * Supported
    DescribeBackupStorageLocations describe backup storage locations Operation level * Supported
    DescribeBootstrapTokens Describe BootstrapTokens Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeCcnInstances query the list of ccn instances of a vpc Resource level qcs::vpc:${region}:uin/${uin}:vpc/${vpcId} not supported
    DescribeCcnRoutes query the list of ccn routes of a cluster CIDR Resource level qcs::vpc:${region}:uin/${uin}:vpc/${vpcId} not supported
    DescribeClusterAsGroupOption Get autoscaler group options of cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterAuthStatus whether the cluster automatically cleans up expired sub-accounts Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterAuthenticationOptions Describe the cluster authentiaton configuration Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeClusterAuthorizationMode get cluster authorization mode Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterAvailableExtraArgs query the custom parameters available to the cluster Operation level * not supported
    DescribeClusterCIDRs query the list of cluster CIDRs of a vpc Operation level * not supported
    DescribeClusterCloudResources describe cluster cloud resources Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeClusterCommonNames obtain the mapping relationship of the cluster sub-account CommonName Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterControllers query the status of the Kubernetes controller Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterCreateProgress get cluster creation progress Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterEndpointStatus Query status of cluster access endpoint Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterEndpointVipStatus Query status of enabling cluster apiserver access endpoint Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterEndpoints get the cluster access address Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterExtraArgs query cluster custom parameters Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterGlobalStat describe cluster global stat Operation level * Supported
    DescribeClusterGlobalStatistics obtain statistics on the number of all geographical clusters Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeClusterHealthyStatus query cluster health status Operation level * not supported
    DescribeClusterInspectionResultsOverview Query the overview information of all cluster inspection results in the user\'s region. Operation level * Supported
    DescribeClusterInstanceIds get a list of cluster node IDs Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterLevelAttribute Describe Cluster Level Attribute Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    DescribeClusterLevelChangeRecords Describe Cluster Level Change Records Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeClusterMasterDiff Describe cluster master diff Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterMetricsData Obtain cluster monitoring data Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterNodePoolDetail query detailed information of a node pool Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterPendingReleases Describe installing applications Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterReleaseDetails Describe release details Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterReleaseHistory Describe release history Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterResourceDetails Obtain detailed information about the resources corresponding to the cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterRoutes query the list of cluster routes of a cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterRuntimeVersion query the cluster runtime version information Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterSecurity Query the secret key of cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterSecurityGroup query cluster security group information Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterStatus view the list of cluster status Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeDeletionEvents get the list of cluster deletion interception events Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeEKSContainerInstances describe EKS Container Instances Operation level * Supported
    DescribeEdgeNodeScript Get the script link for TKE edge clusters Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeEksLogSwitches describe eks cluster log switches Operation level * not supported
    DescribeEksTaskResult Query Task Result Operation level * Supported
    DescribeEnableVpcCniProgress query the progress of enabling vpc cni network for a cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeEncryptionStatus Query whether etcd data is encrypted Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeExistedInstances Query existing nodes to judge if they can join the cluster Operation level * not supported
    DescribeExternalNode describe node details of externalNode type Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeExternalNodePools list node pools of ExternalNode type Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeExternalNodeScript get script which can ben used to add externalNode into cluster Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeExternalNodeSupportConfig describe the configuration for enable ExternalNode feature Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeHealthCheckPolicies DescribeHealthCheckPolicies Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeHealthCheckPolicy Describe health check policy Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    DescribeHealthCheckPolicyBindings DescribeHealthCheckPolicyBindings Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeHealthCheckTemplate query health check template Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeIPAMD query the status of eniipamd component Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeInstanceCreateProgress get node creation progress Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeInstanceTypesForDirectENI query the list of supported instance types for tke direct eni Operation level * not supported
    DescribeInstancesVersion query version statistics of worker nodes Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeInstantInspectTask describe cluster inspect task result Operation level * Supported
    DescribeLogConfigs describe log configs Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeLogSwitches describe log switches Operation level * not supported
    DescribeMasterLog describe master log switch Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    DescribeNodeParamUpdateProcess Describe native node param update process Resource level qcs::tke::uin/${uin}:cluster/${ClusterId} Supported
    DescribeOldStaticIPSubnets query the old vpc cni mode used subnets Operation level * not supported
    DescribeOpenPolicyList Get the opa policy list for TKE edge clusters Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribePodDeductionRate query pod deduction rate Operation level * Supported
    DescribePodsBySpec query pods by spec Operation level * Supported
    DescribePostNodeResources Query Post Node Resources Operation level * Supported
    DescribeRIUtilizationDetail Reserved instance usage query Operation level * Supported
    DescribeRegionStat describe region stat Operation level * Supported
    DescribeReservedInstanceUtilizationRate query reserved instance utilization rate Operation level * Supported
    DescribeReservedInstances Query the list of reserved instances Operation level * Supported
    DescribeResourceUsage get cluster resource usage Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} Supported
    DescribeRouteTableConflicts query the list of route table conflicts. Operation level * not supported
    DescribeTDCCClusterCommonNames describe cluster common names Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    DescribeTDCCClusterMetricData describe external cluster metric data Operation level * not supported
    DescribeTDCCExternalClusterSpec describe external cluster spec Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    DescribeTDCCHubClusterCredential get hub cluster credential detail Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    DescribeTKEEdgeClusterCredential Describe TKEEdge cluster credential Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeTKEEdgeExternalKubeconfig Describe TKEEdge external kubeconfig Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeTKEEdgeInternalKubeconfig Describe TKEEdge internal kubeconfig Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeTKEEdgeScript Describe TKEEdge node adding script link Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeTasks describe task related information Operation level * Supported
    DescribeUnitClusterKubeconfig Obtain the kubeconfig of the k3s cluster deployed on the edge nodes of the edge cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    DescribeUpgradeClusterProgress get cluster upgrade progress Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    GetClusterLevelPrice Get Cluster Level Price Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    GetDashboardID query dashboardID information Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    GetUpgradeInstanceProgress get the current progress of node upgrade Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    InquirePriceConvertNativeNode inquire convert native node price Operation level * Supported
    InquirePricePurchaseNativeNode inquire purchase native node price Operation level * Supported
    ListClusterCertificates get a list of cluster certificates Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    ListClusterInspectionResults Query the details of the inspection results of the specified cluster. Operation level * Supported
    ListClusterInspectionResultsItems Query the list of group inspection history reports. Operation level * Supported
    ListExpiredClusterAuth get expired permission information in the cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    ListHealthCheckPolicy List Health Check Policy Resource level qcs::tke:${Region}:uin/:cluster/${ClusterId} not supported
    ListTDCCClusterCertificates List user certificates in cluster Resource level qcs::tke::uin/:cluster/${ClusterId} not supported
    VerifyQGPU This interface is designed to validate the compatibility of the InstanceType and GPU driver version in the input parameters, in order to ensure the pr Operation level * Supported

    Other Operations

    API API Description Authorization Granularity Six-segment Resource Description IP Restriction
    ClearExpiredClusterAuth clear expired permission information in the cluster Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    SetNodePoolNodeProtection enable removal protection for the nodes automatically created by the scaling group in a node pool Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported

    List Operations

    API API Description Authorization Granularity Six-segment Resource Description IP Restriction
    DescribeClusterAsGroups Get autoscaler groups list of cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterInstances Query cluster nodes Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterMachines query native node list Operation level * not supported
    DescribeClusterNodePools query the node pool list Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusterReleases Describe all installed applications in cluster Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeClusterResourceLabels query the list of cluster resource tags Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeClusters Get cluster list Resource level qcs::tke:$Region:uin/:cluster/$ClusterId Supported
    DescribeNodePools query the node pool list Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} not supported
    DescribeTKEEdgeClusters Describe TKEEdge clusters Resource level qcs::tke:${region}:uin/${uin}:cluster/${ClusterId} Supported
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support