AliyunIOTReadOnlyAccess is a service system policy that is managed by Alibaba Cloud. You can attach the AliyunIOTReadOnlyAccess policy to a Resource Access Management (RAM) identity, such as a RAM user, RAM user group, and RAM role. The AliyunIOTReadOnlyAccess policy: Provides read-only access to IoT Platform via Management Console.
Policy details
Type: service system policy
Creation time: 03:27:36 on December 26, 2016
Update time: 14:09:54 on November 24, 2022
Current version: v7
Policy content
{
"Version": "1",
"Statement": [
{
"Action": [
"iot:Query*",
"iot:List*",
"iot:Get*",
"iot:BatchGet*",
"iot:CheckPostPayOrderExist",
"iot:CheckCloudProductOpenStatus",
"iot:CheckUserProfileMark",
"iot:CheckNewUser",
"iot:CheckSlsLogStore"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Action": [
"iotid:QueryId2OrderAbstract"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Action": [
"isoc:GetSummary",
"isoc:GetDeviceRankSummary",
"isoc:GetDeviceRiskSummary",
"isoc:GetAlertTaskSummary"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Action": [
"linkwan:GetInstancePacketStat",
"linkwan:CountGateways"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Action": [
"rds:DescribeDBInstances",
"rds:DescribeDatabases",
"rds:DescribeAccounts",
"rds:DescribeDBInstanceNetInfo"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Action": "ram:ListRoles",
"Resource": "*",
"Effect": "Allow"
},
{
"Action": "mns:ListTopic",
"Resource": "*",
"Effect": "Allow"
},
{
"Action": [
"dhs:ListProject",
"dhs:ListTopic",
"dhs:GetTopic"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Action": [
"ots:ListInstance",
"ots:ListTable",
"ots:DescribeTable"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Action": [
"log:Get*",
"log:List*"
],
"Resource": "acs:log:*:*:project/iot-log-*",
"Effect": "Allow"
},
{
"Action": [
"cms:QueryMetricList"
],
"Resource": "*",
"Effect": "Allow"
}
]
}