기계 번역으로 제공되는 번역입니다. 제공된 번역과 원본 영어의 내용이 상충하는 경우에는 영어 버전이 우선합니다.

# AWS Cloud Map API 권한 참조
<a name="cloud-map-api-permissions-ref"></a>

액세스 제어를 설정하고 IAM 자격 증명에 연결할 수 있는 권한 정책(자격 증명 기반 정책)을 작성할 때 다음 목록을 참조로 사용할 수 있습니다. 목록에는 각 AWS Cloud Map API 작업과 액세스 권한을 부여해야 하는 작업이 포함됩니다. 정책의 `Action` 필드에 작업을 지정합니다. `Resource` 필드 또는 IAM 정책에서 지정해야 하는 리소스 값에 대한 자세한 내용은 *서비스 승인* 참조의에 [대한 작업, 리소스 및 조건 키를 AWS Cloud Map](https://docs.aws.amazon.com/service-authorization/latest/reference/list_awscloudmap.html) 참조하세요.

일부 작업에 대해 IAM 정책에서 AWS Cloud Map특정 조건 키를 사용할 수 있습니다. 자세한 내용은 *서비스 권한 부여 참조*의 [AWS Cloud Map조건 키](https://docs.aws.amazon.com/service-authorization/latest/reference/list_awscloudmap.html#awscloudmap-policy-keys)를 참조하세요.

작업을 지정하려면 `servicediscovery` 접두사 다음에 API 작업 이름을 사용합니다(예: `servicediscovery:CreatePublicDnsNamespace` 및 `route53:CreateHostedZone`).

## AWS Cloud Map 작업에 필요한 권한
<a name="required-permissions-cloud-map"></a><a name="service-discovery-table"></a>

[CreateHttpNamespace](https://docs.aws.amazon.com/cloud-map/latest/api/API_CreateHttpNamespace.html)  
필수 권한(API 작업):  
+ `servicediscovery:CreateHttpNamespace`

[CreatePrivateDnsNamespace](https://docs.aws.amazon.com/cloud-map/latest/api/API_CreatePrivateDnsNamespace.html)  
필수 권한(API 작업):  
+ `servicediscovery:CreatePrivateDnsNamespace`
+ `route53:CreateHostedZone`
+ `route53:GetHostedZone`
+ `route53:ListHostedZonesByName`
+ `ec2:DescribeVpcs`
+ `ec2:DescribeRegions`

[CreatePublicDnsNamespace](https://docs.aws.amazon.com/cloud-map/latest/api/API_CreatePublicDnsNamespace.html)  
필수 권한(API 작업):  
+ `servicediscovery:CreatePublicDnsNamespace`
+ `route53:CreateHostedZone`
+ `route53:GetHostedZone`
+ `route53:ListHostedZonesByName`

[CreateService](https://docs.aws.amazon.com/cloud-map/latest/api/API_CreateService.html)  
필요한 권한(API 작업): `servicediscovery:CreateService`

[DeleteNamespace](https://docs.aws.amazon.com/cloud-map/latest/api/API_DeleteNamespace.html)  
필수 권한(API 작업):  
+ `servicediscovery:DeleteNamespace`

[DeleteService](https://docs.aws.amazon.com/cloud-map/latest/api/API_DeleteService.html)  
필요한 권한(API 작업): `servicediscovery:DeleteService`

[DeleteServiceAttributes](https://docs.aws.amazon.com/cloud-map/latest/api/API_DeleteServiceAttributes.html)  
필요한 권한(API 작업): `servicediscovery:DeleteServiceAttributes`

[DeregisterInstance](https://docs.aws.amazon.com/cloud-map/latest/api/API_DeregisterInstance.html)  
필수 권한(API 작업):  
+ `servicediscovery:DeregisterInstance`
+ `route53:GetHealthCheck`
+ `route53:DeleteHealthCheck`
+ `route53:UpdateHealthCheck`

[DiscoverInstances](https://docs.aws.amazon.com/cloud-map/latest/api/API_DiscoverInstances.html)  
필요한 권한(API 작업): `servicediscovery:DiscoverInstances`

[GetInstance](https://docs.aws.amazon.com/cloud-map/latest/api/API_GetInstance.html)  
필요한 권한(API 작업): `servicediscovery:GetInstance`

[GetInstancesHealthStatus](https://docs.aws.amazon.com/cloud-map/latest/api/API_GetInstancesHealthStatus.html)  
필요한 권한(API 작업): `servicediscovery:GetInstancesHealthStatus`

[GetNamespace](https://docs.aws.amazon.com/cloud-map/latest/api/API_GetNamespace.html)  
필요한 권한(API 작업): `servicediscovery:GetNamespace`

[GetOperation](https://docs.aws.amazon.com/cloud-map/latest/api/API_GetOperation.html)  
필요한 권한(API 작업): `servicediscovery:GetOperation`

[GetService](https://docs.aws.amazon.com/cloud-map/latest/api/API_GetService.html)  
필요한 권한(API 작업): `servicediscovery:GetService`

[GetServiceAttributes](https://docs.aws.amazon.com/cloud-map/latest/api/API_GetServiceAttributes.html)  
필요한 권한(API 작업): `servicediscovery:GetServiceAttributes`

[ListInstances](https://docs.aws.amazon.com/cloud-map/latest/api/API_ListInstances.html)  
필요한 권한(API 작업): `servicediscovery:ListInstances`

[ListNamespaces](https://docs.aws.amazon.com/cloud-map/latest/api/API_ListNamespaces.html)  
필요한 권한(API 작업): `servicediscovery:ListNamespaces`

[ListOperations](https://docs.aws.amazon.com/cloud-map/latest/api/API_ListOperations.html)  
필요한 권한(API 작업): `servicediscovery:ListOperations`

[ListServices](https://docs.aws.amazon.com/cloud-map/latest/api/API_ListServices.html)  
필요한 권한(API 작업): `servicediscovery:ListServices`

[ListTagsForResource](https://docs.aws.amazon.com/cloud-map/latest/api/API_ListTagsForResource.html)  
필요한 권한(API 작업): `servicediscovery:ListTagsForResource`

[RegisterInstance](https://docs.aws.amazon.com/cloud-map/latest/api/API_RegisterInstance.html)  
필수 권한(API 작업):  
+ `servicediscovery:RegisterInstance`
+ `route53:GetHealthCheck`
+ `route53:CreateHealthCheck`
+ `route53:UpdateHealthCheck`
+ `ec2:DescribeInstances`

[TagResource](https://docs.aws.amazon.com/cloud-map/latest/api/API_TagResource.html)  
필요한 권한(API 작업): `servicediscovery:TagResource`

[UntagResource](https://docs.aws.amazon.com/cloud-map/latest/api/API_UntagResource.html)  
필요한 권한(API 작업): `servicediscovery:UntagResource`

[UpdateHttpNamespace](https://docs.aws.amazon.com/cloud-map/latest/api/API_UpdateHttpNamespace.html)  
필요한 권한(API 작업): `servicediscovery:UpdateHttpNamespace`

[UpdateInstanceCustomHealthStatus](https://docs.aws.amazon.com/cloud-map/latest/api/API_UpdateInstanceCustomHealthStatus.html)  
필요한 권한(API 작업): `servicediscovery:UpdateInstanceCustomHealthStatus`

[UpdatePrivateDnsNamespace](https://docs.aws.amazon.com/cloud-map/latest/api/API_UpdatePrivateDnsNamespace.html)  
필수 권한(API 작업):  
+ `servicediscovery:UpdatePrivateDnsNamespace`
+ `route53:ChangeResourceRecordSets`

[UpdatePublicDnsNamespace](https://docs.aws.amazon.com/cloud-map/latest/api/API_UpdatePublicDnsNamespace.html)  
필수 권한(API 작업):  
+ `servicediscovery:UpdatePublicDnsNamespace`
+ `route53:ChangeResourceRecordSets`

[UpdateService](https://docs.aws.amazon.com/cloud-map/latest/api/API_UpdateService.html)  
필수 권한(API 작업):  
+ `servicediscovery:UpdateService`
+ `route53:GetHealthCheck`
+ `route53:CreateHealthCheck`
+ `route53:DeleteHealthCheck`
+ `route53:UpdateHealthCheck`

[UpdateServiceAttributes](https://docs.aws.amazon.com/cloud-map/latest/api/API_UpdateServiceAttributes.html)  
필요한 권한(API 작업): `servicediscovery:UpdateServiceAttributes`