本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
使用 IAM 條件索引鍵進行 AWS Artifact 報告
您可以使用 IAM 條件金鑰 AWS Artifact,根據特定報告類別和系列提供對報告的精細存取。
下列範例政策顯示您可以根據特定報告類別和系列指派給 IAM 使用者的許可。
範例 管理 AWS 報告讀取存取權的政策範例
AWS Artifact 報告由 IAM 資源 表示report。
下列政策授予讀取 Certifications and Attestations類別下所有 AWS Artifact 報告的許可。
-
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "artifact:ListReports" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "artifact:GetReport", "artifact:GetReportMetadata", "artifact:GetTermForReport" ], "Resource": "*", "Condition": { "StringEquals": { "artifact:ReportCategory": "Certifications and Attestations" } } } ] }
下列政策可讓您授予讀取 SOC 系列下所有 AWS Artifact 報告的許可。
-
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "artifact:ListReports" ], "Resource": "*" },{ "Effect": "Allow", "Action": [ "artifact:GetReport", "artifact:GetReportMetadata", "artifact:GetTermForReport" ], "Resource": [ "*" ], "Condition": { "StringEquals": { "artifact:ReportSeries": "SOC", "artifact:ReportCategory": "Certifications and Attestations" } } } ] }
下列政策可讓您授予讀取 Certifications and Attestations類別和SOC系列下所有 AWS Artifact 報告的許可。
-
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "artifact:ListReports" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "artifact:GetReport", "artifact:GetReportMetadata", "artifact:GetTermForReport" ], "Resource": "*", "Condition": { "StringEquals": { "artifact:ReportSeries": "SOC", "artifact:ReportCategory": "Certifications and Attestations" } } } ] }
