翻訳は機械翻訳により提供されています。提供された翻訳内容と英語版の間で齟齬、不一致または矛盾がある場合、英語版が優先します。
CloudWatchApplicationSignalsReadOnlyAccess
説明: CloudWatch Application Signals サービスへの読み取り専用アクセスと、サービスの使用に必要な依存関係へのスコープ付きアクセスを提供します。
CloudWatchApplicationSignalsReadOnlyAccess は AWS マネージドポリシーです。
このポリシーを使用すると
ユーザー、グループおよびロールに CloudWatchApplicationSignalsReadOnlyAccess をアタッチできます。
ポリシーの詳細
-
タイプ: AWS 管理ポリシー
-
作成日時: 2024 年 6 月 6 日 22:48 UTC
-
編集日時: 2025 年 9 月 29 日 16:19 UTC
-
ARN:
arn:aws:iam::aws:policy/CloudWatchApplicationSignalsReadOnlyAccess
ポリシーのバージョン
ポリシーのバージョン: v2 (デフォルト)
ポリシーのデフォルトバージョンは、ポリシーのアクセス許可を定義するバージョンです。ポリシーを持つユーザーまたはロールが AWS リソースへのアクセスをリクエストすると、 はポリシーのデフォルトバージョン AWS をチェックして、リクエストを許可するかどうかを判断します。
JSON ポリシードキュメント
{ "Version" : "2012-10-17", "Statement" : [ { "Sid" : "CloudWatchApplicationSignalsReadOnlyAccessPermissions", "Effect" : "Allow", "Action" : [ "application-signals:BatchGetServiceLevelObjectiveBudgetReport", "application-signals:GetService", "application-signals:GetServiceLevelObjective", "application-signals:ListServiceLevelObjectives", "application-signals:ListServiceDependencies", "application-signals:ListServiceDependents", "application-signals:ListServiceOperations", "application-signals:ListServices", "application-signals:ListTagsForResource", "application-signals:ListServiceStates", "application-signals:ListAuditFindings", "application-signals:ListGroupingAttributeDefinitions" ], "Resource" : "*" }, { "Sid" : "CloudWatchApplicationSignalsGetRolePermissions", "Effect" : "Allow", "Action" : "iam:GetRole", "Resource" : "arn:aws:iam::*:role/aws-service-role/application-signals.cloudwatch.amazonaws.com/AWSServiceRoleForCloudWatchApplicationSignals" }, { "Sid" : "CloudWatchApplicationSignalsLogsPermissions", "Effect" : "Allow", "Action" : [ "logs:StartQuery", "logs:StopQuery", "logs:GetQueryResults", "logs:DescribeLogGroups" ], "Resource" : "*" }, { "Sid" : "CloudWatchApplicationSignalsAlarmsReadPermissions", "Effect" : "Allow", "Action" : [ "cloudwatch:DescribeAlarms" ], "Resource" : "*" }, { "Sid" : "CloudWatchApplicationSignalsMetricsReadPermissions", "Effect" : "Allow", "Action" : [ "cloudwatch:GetMetricData", "cloudwatch:ListMetrics" ], "Resource" : "*" }, { "Sid" : "CloudWatchApplicationSignalsSyntheticsReadPermissions", "Effect" : "Allow", "Action" : [ "synthetics:DescribeCanaries", "synthetics:DescribeCanariesLastRun", "synthetics:GetCanaryRuns" ], "Resource" : "*" }, { "Sid" : "CloudWatchApplicationSignalsRumReadPermissions", "Effect" : "Allow", "Action" : [ "rum:BatchGetRumMetricDefinitions", "rum:GetAppMonitor", "rum:GetAppMonitorData", "rum:ListAppMonitors" ], "Resource" : "*" }, { "Sid" : "CloudWatchApplicationSignalsXrayTracePermissions", "Effect" : "Allow", "Action" : [ "xray:GetTraceSummaries" ], "Resource" : "*" }, { "Sid" : "CloudWatchApplicationSignalsXrayReadPermissions", "Effect" : "Allow", "Action" : [ "xray:StartTraceRetrieval", "xray:ListRetrievedTraces", "xray:BatchGetTraces", "xray:GetTraceSegmentDestination" ], "Resource" : "*", "Condition" : { "ForAnyValue:StringEquals" : { "aws:CalledVia" : [ "application-signals.cloudwatch.amazonaws.com" ] } } }, { "Sid" : "CloudWatchApplicationSignalsCloudTrailPermissions", "Effect" : "Allow", "Action" : [ "cloudtrail:GetChannel" ], "Resource" : "arn:aws:cloudtrail:*:*:channel/aws-service-channel/application-signals/*" }, { "Sid" : "CloudWatchApplicationSignalsCloudTrailListPermissions", "Effect" : "Allow", "Action" : [ "cloudtrail:ListChannels" ], "Resource" : "*" }, { "Sid" : "CloudWatchApplicationSignalsServiceQuotaPermissions", "Effect" : "Allow", "Action" : [ "servicequotas:GetServiceQuota" ], "Resource" : [ "arn:aws:servicequotas:*:*:s3/*", "arn:aws:servicequotas:*:*:dynamodb/*", "arn:aws:servicequotas:*:*:kinesis/*", "arn:aws:servicequotas:*:*:sns/*", "arn:aws:servicequotas:*:*:bedrock/*", "arn:aws:servicequotas:*:*:lambda/*", "arn:aws:servicequotas:*:*:fargate/*", "arn:aws:servicequotas:*:*:elasticloadbalancing/*", "arn:aws:servicequotas:*:*:ec2/*" ] } ] }
詳細はこちら
