tencent cloud

Feedback

TDSQL for MySQL

Last updated: 2024-03-02 09:08:40

    Service roles and service-linked roles are predefined by Tencent Cloud services and, upon user authorization, the corresponding services can access and use resources by assuming these service-linked roles. This document provides detailed information on the use cases and associated authorization policies of these specific service-linked roles.

    Product Role Name Role Types Role Entity
    TDSQL for MySQL DCDB_QCSLinkedRoleInKMS Service-Related Roles kms.dcdb.cloud.tencent.com
    TDSQL for MySQL DCDB_QCSLinkedRoleInTSE Service-Related Roles tse.dcdb.cloud.tencent.com

    DCDB_QCSLinkedRoleInKMS

    Use Cases: The current role is the DCDB service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
    Authorization Polices

    • Policy Name: QcloudAccessForDCDBLinkedRoleInKMS
    • Policy Information:
    {
        "version": "2.0",
        "statement": [
            {
                "effect": "allow",
                "resource": [
                    "*"
                ],
                "action": [
                    "kms:GetServiceStatus",
                    "kms:CreateKey",
                    "kms:GenerateDataKey",
                    "kms:Decrypt",
                    "kms:Encrypt",
                    "kms:ReEncrypt",
                    "kms:EnableKey",
                    "kms:EnableKeyRotation",
                    "kms:ListKeyDetail",
                    "kms:DescribeKey",
                    "kms:ListKey"
                ]
            }
        ]
    }
    

    DCDB_QCSLinkedRoleInTSE

    Use Cases: The current role is the DCDB service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
    Authorization Polices

    • Policy Name: QcloudAccessForDCDBLinkedRoleInTSE
    • Policy Information:
    {
        "statement": [
            {
                "action": [
                    "tse:CreateGovernanceStrategy",
                    "tse:DescribeGovernanceMainToken",
                    "tse:DescribeGovernanceInstances",
                    "tse:DescribeGovernanceServices",
                    "tse:CreateGovernanceInstances",
                    "tse:DeleteGovernanceInstances",
                    "tse:ModifyGovernanceServices",
                    "tse:DescribeGovernanceStrategies",
                    "tse:DescribeSREInstances",
                    "tse:ModifyGovernanceInstances",
                    "tse:DescribeGovernanceNamespaces",
                    "tse:DescribeGovernanceAuthStrategies"
                ],
                "effect": "allow",
                "resource": "*"
            }
        ],
        "version": "2.0"
    }
    
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support