本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
使用IAM條件索引鍵進行 AWS Artifact 報告
您可以使用IAM條件索引鍵,根據特定報告類別和系列 AWS Artifact,對 上的報告提供精細存取。
下列範例政策顯示您可以根據特定報告類別和系列指派給IAM使用者的許可。
範例 管理 AWS 報告讀取存取權的政策範例
AWS Artifact 報告由IAM資源 表示report。
下列政策授予許可,以讀取 Certifications and Attestations類別下的所有 AWS Artifact 報告。
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "artifact:ListReports" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "artifact:GetReport", "artifact:GetReportMetadata", "artifact:GetTermForReport" ], "Resource": "*", "Condition": { "StringEquals": { "artifact:ReportCategory": "Certifications and Attestations" } } } ] }
下列政策可讓您授予許可,以讀取 SOC 系列下的所有 AWS Artifact 報告。
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "artifact:ListReports" ], "Resource": "*" },{ "Effect": "Allow", "Action": [ "artifact:GetReport", "artifact:GetReportMetadata", "artifact:GetTermForReport" ], "Resource": [ "*" ], "Condition": { "StringEquals": { "artifact:ReportSeries": "SOC", "artifact:ReportCategory": "Certifications and Attestations" } } } ] }
下列政策可讓您授予許可,以讀取除 Certifications and Attestations類別下的所有 AWS Artifact 報告。
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "artifact:ListReports" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "artifact:GetReport", "artifact:GetReportMetadata", "artifact:GetTermForReport" ], "Resource": "*", "Condition": { "StringEquals": { "artifact:ReportSeries": "SOC", "artifact:ReportCategory": "Certifications and Attestations" } } } ] }
