本文属于机器翻译版本。若本译文内容与英语原文存在差异,则一律以英文原文为准。
用于配置 Private Marketplace 的服务相关角色 AWS Marketplace
AWS Marketplace 使用名为的服务相关角色AWSServiceRoleForPrivateMarketplaceAdmin来描述和更新 Private Marketplace 资源并进行描述 AWS Organizations。
AWSServiceRoleForPrivateMarketplaceAdmin服务相关角色信任以下服务来代入该角色:
-
private-marketplace.marketplace.amazonaws.com
使用名为的角色权限策略AWSServiceRoleForPrivateMarketplaceAdminPolicy AWS Marketplace 允许对指定资源执行以下操作。
注意
有关 AWS Marketplace 托管政策的更多信息,请参阅AWS Marketplace 买家AWS托管政策。
{ "Version": "2012-10-17", "Statement": [ { "Sid": "PrivateMarketplaceCatalogDescribePermissions", "Effect": "Allow", "Action": [ "aws-marketplace:DescribeEntity" ], "Resource": [ "arn:aws:aws-marketplace:*:*:AWSMarketplace/Experience/*", "arn:aws:aws-marketplace:*:*:AWSMarketplace/Audience/*", "arn:aws:aws-marketplace:*:*:AWSMarketplace/ProcurementPolicy/*", "arn:aws:aws-marketplace:*:*:AWSMarketplace/BrandingSettings/*" ] }, { "Sid": "PrivateMarketplaceCatalogDescribeChangeSetPermissions", "Effect": "Allow", "Action": [ "aws-marketplace:DescribeChangeSet" ], "Resource": "*" }, { "Sid": "PrivateMarketplaceCatalogListPermissions", "Effect": "Allow", "Action": [ "aws-marketplace:ListEntities", "aws-marketplace:ListChangeSets" ], "Resource": "*" }, { "Sid": "PrivateMarketplaceStartChangeSetPermissions", "Effect": "Allow", "Action": [ "aws-marketplace:StartChangeSet" ], "Condition": { "StringEquals": { "catalog:ChangeType": [ "AssociateAudience", "DisassociateAudience" ] } }, "Resource": [ "arn:aws:aws-marketplace:*:*:AWSMarketplace/Experience/*", "arn:aws:aws-marketplace:*:*:AWSMarketplace/ChangeSet/*" ] }, { "Sid": "PrivateMarketplaceOrganizationPermissions", "Effect": "Allow", "Action": [ "organizations:DescribeAccount", "organizations:DescribeOrganizationalUnit", "organizations:ListDelegatedAdministrators", "organizations:ListChildren" ], "Resource": [ "*" ] } ] }
您必须配置允许用户、组或角色创建、编辑或删除服务相关角色的权限。有关更多信息,请参阅《IAM用户指南》中的服务相关角色权限。
