AliyunVPNGatewayFullAccess is a service system policy that is managed by Alibaba Cloud. You can attach the AliyunVPNGatewayFullAccess policy to a Resource Access Management (RAM) identity, such as a RAM user, RAM user group, and RAM role. The AliyunVPNGatewayFullAccess policy: Provides full access to VPN Gateway via Management Console.
Policy details
Type: service system policy
Creation time: 08:24:54 on June 19, 2017
Update time: 09:05:19 on July 03, 2023
Current version: v8
Policy content
{
"Version": "1",
"Statement": [
{
"Action": [
"vpc:*VpnGateway*",
"vpc:*VpnConnection*",
"vpc:*CustomerGateway*",
"vpc:*SslVpnServer*",
"vpc:*SslVpnClientCert*",
"vpc:*VpnRoute*",
"vpc:*VpnPbrRoute*",
"vpc:*VpnCertificate*",
"vpc:*IpsecServer*",
"vpc:*VcoRoute*",
"vpc:*VpnAttachment*",
"vpc:DescribeVpnCrossAccountAuthorizations",
"vpc:UpgradeVcoFirmware",
"vpc:*VpnSslServer*",
"vpc:DescribeSslVpnClients",
"vpc:ModifyTunnelAttribute",
"vpc:CheckVpnBgpEnabled",
"vpc:MoveVpnResourceGroup"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Action": "ram:CreateServiceLinkedRole",
"Resource": "*",
"Effect": "Allow",
"Condition": {
"StringEquals": {
"ram:ServiceName": "vpn.aliyuncs.com"
}
}
}
]
}