Resource Access Management:AliyunNATGatewayReadOnlyAccess

AliyunNATGatewayReadOnlyAccess is a service system policy that is managed by Alibaba Cloud. You can attach the AliyunNATGatewayReadOnlyAccess policy to a Resource Access Management (RAM) identity, such as a RAM user, RAM user group, and RAM role. The AliyunNATGatewayReadOnlyAccess policy: Provides read-only access to NAT Gateway via Management Console.

Policy details

• Type: service system policy

• Creation time: 10:43:39 on July 11, 2017

• Update time: 10:16:00 on July 03, 2023

• Current version: v3

Policy content

{
  "Version": "1",
  "Statement": [
    {
      "Action": [
        "vpc:DescribeNatGateway*",
        "vpc:DescribeBandwidthPackage*",
        "vpc:DescribeSnatTableEntr*",
        "vpc:DescribeForwardTableEntr*",
        "vpc:GetNatGatewayAttribute",
        "vpc:VpcDescribeVpcNatGatewayNetworkInterfaceQuota",
        "vpc:ListFullNatEntries",
        "vpc:ListNatIpCidrs",
        "vpc:ListNatIps",
        "vpc:ListEnhanhcedNatGatewayAvailableZones"
      ],
      "Resource": "*",
      "Effect": "Allow"
    }
  ]
}

References

• Policy elements

• Grant permissions to a RAM user

• Grant permissions to a RAM user group

• Grant permissions to a RAM role