本文为您介绍什么是云备份ECS容灾的服务关联角色(AliyunServiceRoleForHbrDr)以及如何删除服务关联角色。
背景信息
云备份ECS容灾的服务关联角色(AliyunServiceRoleForHbrDr)是在某些情况下,为了完成云备份ECS容灾自身的某个功能,需要获取其他云服务的访问权限,而提供的RAM角色。更多关于服务关联角色的信息请参见服务关联角色。
云备份ECS容灾服务可能需要创建新的vSwitch、安全组及ECS实例、镜像等,您可以通过云备份ECS容灾的服务关联角色(AliyunServiceRoleForHbrDr)获取访问VPC和ECS资源的权限。
AliyunServiceRoleForHbrDr 介绍
角色名称:AliyunServiceRoleForHbrDr
角色权限策略: AliyunServiceRolePolicyForHbrDr
权限说明:
{
"Version": "1",
"Statement": [
{
"Action": [
"ecs:DescribeImages",
"ecs:CreateDisk",
"ecs:AttachDisk",
"ecs:ReInitDisk",
"ecs:DetachDisk",
"ecs:DescribeDisks",
"ecs:ReplaceSystemDisk",
"ecs:DeleteDisk",
"ecs:ResizeDisk",
"ecs:CreateInstance",
"ecs:StartInstance",
"ecs:StopInstance",
"ecs:RebootInstance",
"ecs:DeleteInstance",
"ecs:DescribeInstances",
"ecs:CreateSecurityGroup",
"ecs:DescribeSecurityGroups",
"ecs:AuthorizeSecurityGroup",
"ecs:AuthorizeSecurityGroupEgress",
"ecs:DeleteSecurityGroup",
"ecs:AllocatePublicIpAddress",
"ecs:ModifyInstanceAttribute",
"ecs:JoinSecurityGroup",
"ecs:CreateNetworkInterface",
"ecs:DeleteNetworkInterface",
"ecs:DescribeNetworkInterfaces",
"ecs:CreateNetworkInterfacePermission",
"ecs:DescribeNetworkInterfacePermissions",
"ecs:DeleteNetworkInterfacePermission",
"ecs:CreateSnapshot",
"ecs:DeleteSnapshot",
"ecs:DescribeSnapshots",
"ecs:DescribeSnapshotLinks",
"ecs:CreateCommand",
"ecs:InvokeCommand",
"ecs:StopInvocation",
"ecs:DeleteCommand",
"ecs:DescribeCommands",
"ecs:DescribeInvocations",
"ecs:DescribeInvocationResults",
"ecs:DescribeCloudAssistantStatus",
"ecs:ModifyResourceMeta"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Action": [
"vpc:DescribeVpcs",
"vpc:DescribeVSwitches",
"vpc:DescribeEipAddresses",
"vpc:AssociateEipAddress"
],
"Resource": "*",
"Effect": "Allow"
}
]
}删除服务关联角色
如果您需要删除服务关联角色(AliyunServiceRoleForHbrDr),您需要先删除云备份ECS容灾下的所有站点对。
删除服务关联角色具体操作请参见删除服务关联角色。