Data Security Governance Center
Last updated: 2025-12-04 09:16:30
Service roles and service-linked roles are predefined by Tencent Cloud services and, upon user authorization, the corresponding services can access and use resources by assuming these service-linked roles. This document provides detailed information on the use cases and associated authorization policies of these specific service-linked roles.
| Product | Role Name | Role Types | Role Entity |
|---|---|---|---|
| Data Security Governance Center | DSGC_QCSLinkedRoleInApiSec | Service-Related Roles | apisec.dsgc.cloud.tencent.com |
DSGC_QCSLinkedRoleInApiSec
Use Cases: The current role is the DSGC service linked role, which will access your other service resources within the scope of the permissions of the associated policy.
Authorization Polices
- Policy Name: QcloudAccessForDSGCLinkedRoleInApiSec
- Policy Information:
{ "version": "2.0", "statement": [ { "effect": "allow", "action": [ "cvm:DescribeInstances", "clb:CreateLoadBalancer", "clb:DeleteLoadBalancer", "clb:CreateListener", "clb:DescribeListeners", "clb:DeleteListener", "clb:DeleteLoadBalancerListeners", "clb:RegisterTargets", "clb:DeregisterTargets", "vpc:CreateVpcEndPointService", "vpc:DescribeVpcEndPointService", "vpc:ModifyVpcEndPointServiceAttribute", "vpc:DeleteVpcEndPointService", "vpc:CreateVpcEndPointServiceWhiteList", "vpc:DescribeVpcEndPointServiceWhiteList", "vpc:DeleteVpcEndPointServiceWhiteList", "vpc:EnableVpcEndPointConnect", "vpc:CheckVpcEndPointServiceExist", "vpc:CreateVpcEndPoint", "vpc:DescribeVpcEndPoint", "vpc:ModifyVpcEndPointAttribute", "vpc:DeleteVpcEndPoint", "vpc:DeleteVpcEndPointAndServiceAll", "tat:DescribeAutomationAgentStatus", "tat:RunCommand", "tat:DescribeInvocations", "tat:DescribeInvocationTasks" ], "resource": "*" } ] }
Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No
Feedback