本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
AWS 賣方的 AWS Marketplace 受管政策
AWS 受管政策是由 AWS AWS .managed 政策建立和管理的獨立政策旨在為許多常見使用案例提供許可,以便您可以開始將許可指派給使用者、群組和角色。
請記住, AWS 受管政策可能不會授予特定使用案例的最低權限許可,因為這些許可可供所有 AWS 客戶使用。我們建議您定義使用案例專屬的客戶管理政策,以便進一步減少許可。
您無法變更 AWS 受管政策中定義的許可。如果 AWS 更新受管政策中 AWS 定義的許可,則更新會影響政策連接的所有主體身分 (使用者、群組和角色)。 AWS 最有可能在 AWS 服務 啟動新的 或現有 服務可用的新API操作時更新受 AWS 管政策。
如需詳細資訊,請參閱 IAM 使用者指南 中的 AWS 受管政策。
本節列出用於管理賣方對 存取權的每個政策 AWS Marketplace。如需買家政策的相關資訊,請參閱 AWS Marketplace 買家指南 中的AWSAWS Marketplace 買家受管政策。
主題
- AWS 受管政策: AWSMarketplaceAmiIngestion
- AWS 受管政策: AWSMarketplaceFullAccess
- AWS 受管政策: AWSMarketplaceGetEntitlements
- AWS 受管政策: AWSMarketplaceMeteringFullAccess
- AWS 受管政策:AWSMarketplaceMeteringRegisterUsage
- AWS 受管政策: AWSMarketplaceSellerFullAccess
- AWS 受管政策:AWSMarketplaceSellerProductsFullAccess
- AWS 受管政策:AWSMarketplaceSellerProductsReadOnly
- AWS 受管政策: AWSVendorInsightsVendorFullAccess
- AWS 受管政策: AWSVendorInsightsVendorReadOnly
- AWS Marketplace 受 AWS 管政策的更新
AWS 受管政策: AWSMarketplaceAmiIngestion
您可以使用此政策建立服務角色,然後由 AWS Marketplace 代表您執行動作。如需有關使用 AWSMarketplaceAmiIngestion 的詳細資訊,請參閱 授予 的 AWS Marketplace 存取權 AMI。
此政策用於授予貢獻者許可, AWS Marketplace 允許複製您的 Amazon Machine Images (AMIs),以便在 上列出它們 AWS Marketplace。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Action": [ "ec2:ModifySnapshotAttribute" ], "Effect": "Allow", "Resource": "arn:aws:ec2:us-east-1::snapshot/snap-*" }, { "Action": [ "ec2:DescribeImageAttribute", "ec2:DescribeImages", "ec2:DescribeSnapshotAttribute", "ec2:ModifyImageAttribute" ], "Effect": "Allow", "Resource": "*" } ] }
AWS 受管政策: AWSMarketplaceFullAccess
您可以將AWSMarketplaceFullAccess政策連接至身分IAM。
此政策授予管理許可,允許以賣方和買方身分完整存取 AWS Marketplace 和 相關服務。這些許可包括下列功能:
-
訂閱和取消訂閱 AWS Marketplace 軟體。
-
從 管理 AWS Marketplace 軟體執行個體 AWS Marketplace。
-
在帳戶中建立和管理私有市集。
-
提供 Amazon EC2 AWS CloudFormation、 和 Amazon EC2 Systems Manager 的存取權。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "aws-marketplace:*", "cloudformation:CreateStack", "cloudformation:DescribeStackResource", "cloudformation:DescribeStackResources", "cloudformation:DescribeStacks", "cloudformation:List*", "ec2:AuthorizeSecurityGroupEgress", "ec2:AuthorizeSecurityGroupIngress", "ec2:CreateSecurityGroup", "ec2:CreateTags", "ec2:DescribeAccountAttributes", "ec2:DescribeAddresses", "ec2:DeleteSecurityGroup", "ec2:DescribeImages", "ec2:DescribeInstances", "ec2:DescribeKeyPairs", "ec2:DescribeSecurityGroups", "ec2:DescribeSubnets", "ec2:DescribeTags", "ec2:DescribeVpcs", "ec2:RunInstances", "ec2:StartInstances", "ec2:StopInstances", "ec2:TerminateInstances" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "ec2:CopyImage", "ec2:DeregisterImage", "ec2:DescribeSnapshots", "ec2:DeleteSnapshot", "ec2:CreateImage", "ec2:DescribeInstanceStatus", "ssm:GetAutomationExecution", "ssm:UpdateDocumentDefaultVersion", "ssm:CreateDocument", "ssm:StartAutomationExecution", "ssm:ListDocuments", "ssm:UpdateDocument", "ssm:DescribeDocument", "sns:ListTopics", "sns:GetTopicAttributes", "sns:CreateTopic", "iam:GetRole", "iam:GetInstanceProfile", "iam:ListRoles", "iam:ListInstanceProfiles" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "s3:ListBucket", "s3:GetObject" ], "Resource": [ "arn:aws:s3:::*image-build*" ] }, { "Effect": "Allow", "Action": [ "sns:Publish", "sns:setTopicAttributes" ], "Resource": "arn:aws:sns:*:*:*image-build*" }, { "Effect": "Allow", "Action": [ "iam:PassRole" ], "Resource": [ "*" ], "Condition": { "StringLike": { "iam:PassedToService": [ "ec2.amazonaws.com", "ssm.amazonaws.com" ] } } } ] }
AWS 受管政策: AWSMarketplaceGetEntitlements
您可以將AWSMarketplaceGetEntitlements政策連接至身分IAM。
此政策授予唯讀許可,允許軟體即服務 (SaaS產品賣家檢查客戶是否已訂閱其 AWS Marketplace SaaS 產品。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Sid" : "AWSMarketplaceGetEntitlements", "Effect" : "Allow", "Action": [ "aws-marketplace:GetEntitlements" ], "Resource": "*" } ] }
AWS 受管政策: AWSMarketplaceMeteringFullAccess
您可以將AWSMarketplaceMeteringFullAccess政策連接至身分IAM。
此政策會授予貢獻者許可,允許報告對應至 AMI和容器產品的計量用量,並在 上採用彈性耗用定價 AWS Marketplace。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Action": [ "aws-marketplace:MeterUsage" ], "Effect": "Allow", "Resource": "*" } ] }
AWS
受管政策:AWSMarketplaceMeteringRegisterUsage
您可以將AWSMarketplaceMeteringRegisterUsage政策連接至身分IAM。
此政策授予貢獻者許可,允許報告對應至容器產品的計量用量,其每小時定價在 上 AWS Marketplace。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Action": [ "aws-marketplace:RegisterUsage" ], "Effect": "Allow", "Resource": "*" } ] }
AWS 受管政策: AWSMarketplaceSellerFullAccess
您可以將AWSMarketplaceSellerFullAccess政策連接至身分IAM。
此政策授予管理許可,允許完整存取 上的所有賣方操作 AWS Marketplace,包括 AWS Marketplace 管理入口網站,並管理 AMI型產品EC2AMI中使用的 Amazon。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Sid": "MarketplaceManagement", "Effect": "Allow", "Action": [ "aws-marketplace-management:uploadFiles", "aws-marketplace-management:viewMarketing", "aws-marketplace-management:viewReports", "aws-marketplace-management:viewSupport", "aws-marketplace-management:viewSettings", "aws-marketplace:ListChangeSets", "aws-marketplace:DescribeChangeSet", "aws-marketplace:StartChangeSet", "aws-marketplace:CancelChangeSet", "aws-marketplace:ListEntities", "aws-marketplace:DescribeEntity", "aws-marketplace:ListTasks", "aws-marketplace:DescribeTask", "aws-marketplace:UpdateTask", "aws-marketplace:CompleteTask", "aws-marketplace:GetSellerDashboard", "aws-marketplace:ListAssessments", "aws-marketplace:DescribeAssessment", "ec2:DescribeImages", "ec2:DescribeSnapshots", "ec2:ModifyImageAttribute", "ec2:ModifySnapshotAttribute" ], "Resource": "*" }, { "Sid": "AgreementAccess", "Action": [ "aws-marketplace:SearchAgreements", "aws-marketplace:DescribeAgreement", "aws-marketplace:GetAgreementTerms" ], "Effect": "Allow", "Resource": "*", "Condition": { "StringEquals": { "aws-marketplace:PartyType": "Proposer" }, "ForAllValues:StringEquals": { "aws-marketplace:AgreementType": [ "PurchaseAgreement" ] } } }, { "Sid": "IAMGetRole", "Effect": "Allow", "Action": [ "iam:GetRole" ], "Resource": "arn:aws:iam::*:role/*" }, { "Sid": "AssetScanning", "Effect": "Allow", "Action": [ "iam:PassRole" ], "Resource": "arn:aws:iam::*:role/*", "Condition": { "StringEquals": { "iam:PassedToService": "assets.marketplace.amazonaws.com" } } }, { "Sid": "VendorInsights", "Effect": "Allow", "Action": [ "vendor-insights:GetDataSource", "vendor-insights:ListDataSources", "vendor-insights:ListSecurityProfiles", "vendor-insights:GetSecurityProfile", "vendor-insights:GetSecurityProfileSnapshot", "vendor-insights:ListSecurityProfileSnapshots" ], "Resource": "*" }, { "Sid": "TagManagement", "Effect": "Allow", "Action": [ "aws-marketplace:TagResource", "aws-marketplace:UntagResource", "aws-marketplace:ListTagsForResource" ], "Resource": "arn:aws:aws-marketplace:*:*:AWSMarketplace/*" }, { "Sid": "SellerSettings", "Effect": "Allow", "Action": [ "aws-marketplace-management:GetSellerVerificationDetails", "aws-marketplace-management:PutSellerVerificationDetails", "aws-marketplace-management:GetBankAccountVerificationDetails", "aws-marketplace-management:PutBankAccountVerificationDetails", "aws-marketplace-management:GetSecondaryUserVerificationDetails", "aws-marketplace-management:PutSecondaryUserVerificationDetails", "aws-marketplace-management:GetAdditionalSellerNotificationRecipients", "aws-marketplace-management:PutAdditionalSellerNotificationRecipients", "payments:GetPaymentInstrument", "payments:CreatePaymentInstrument", "payments:ListPaymentInstruments", "payments:ListTagsForResource", "payments:TagResource", "payments:UntagResource", "tax:GetTaxInterview", "tax:PutTaxInterview", "tax:GetTaxInfoReportingDocument" ], "Resource": "*" }, { "Sid": "Support", "Effect": "Allow", "Action": [ "support:CreateCase" ], "Resource": "*" }, { "Sid": "ResourcePolicyManagement", "Effect": "Allow", "Action": [ "aws-marketplace:GetResourcePolicy", "aws-marketplace:PutResourcePolicy", "aws-marketplace:DeleteResourcePolicy" ], "Resource": "arn:aws:aws-marketplace:*:*:AWSMarketplace/*" } ] }
AWS
受管政策:AWSMarketplaceSellerProductsFullAccess
您可以將AWSMarketplaceSellerProductsFullAccess政策連接至身分IAM。
此政策授予貢獻者許可,允許完整存取 和 AWS Marketplace 管理入口網站,以及管理 AMI型產品EC2AMI中使用的 Amazon。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "aws-marketplace:ListChangeSets", "aws-marketplace:DescribeChangeSet", "aws-marketplace:StartChangeSet", "aws-marketplace:CancelChangeSet", "aws-marketplace:ListEntities", "aws-marketplace:DescribeEntity", "aws-marketplace:ListTasks", "aws-marketplace:DescribeTask", "aws-marketplace:UpdateTask", "aws-marketplace:CompleteTask", "aws-marketplace:ListAssessments", "aws-marketplace:DescribeAssessment", "ec2:DescribeImages", "ec2:DescribeSnapshots", "ec2:ModifyImageAttribute", "ec2:ModifySnapshotAttribute" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "iam:GetRole" ], "Resource": "arn:aws:iam::*:role/*" }, { "Effect": "Allow", "Action": [ "iam:PassRole" ], "Resource": "arn:aws:iam::*:role/*", "Condition": { "StringEquals": { "iam:PassedToService": "assets.marketplace.amazonaws.com" } } }, { "Effect": "Allow", "Action": [ "vendor-insights:GetDataSource", "vendor-insights:ListDataSources", "vendor-insights:ListSecurityProfiles", "vendor-insights:GetSecurityProfile", "vendor-insights:GetSecurityProfileSnapshot", "vendor-insights:ListSecurityProfileSnapshots" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "aws-marketplace:TagResource", "aws-marketplace:UntagResource", "aws-marketplace:ListTagsForResource" ], "Resource": "arn:aws:aws-marketplace:*:*:AWSMarketplace/*" }, { "Effect": "Allow", "Action": [ "aws-marketplace:GetResourcePolicy", "aws-marketplace:PutResourcePolicy", "aws-marketplace:DeleteResourcePolicy" ], "Resource": "arn:aws:aws-marketplace:*:*:AWSMarketplace/*" } ] }
AWS
受管政策:AWSMarketplaceSellerProductsReadOnly
您可以將AWSMarketplaceSellerProductsReadOnly政策連接至身分IAM。
此政策授予唯讀許可,允許存取 以檢視 上的產品 AWS Marketplace 管理入口網站,並檢視 AMI型產品EC2AMI中使用的 Amazon。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "aws-marketplace:ListChangeSets", "aws-marketplace:DescribeChangeSet", "aws-marketplace:ListEntities", "aws-marketplace:DescribeEntity", "aws-marketplace:ListTasks", "aws-marketplace:DescribeTask", "aws-marketplace:ListAssessments", "aws-marketplace:DescribeAssessment", "ec2:DescribeImages", "ec2:DescribeSnapshots" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "aws-marketplace:ListTagsForResource" ], "Resource": "arn:aws:aws-marketplace:*:*:AWSMarketplace/*" }, ] }
AWS 受管政策: AWSVendorInsightsVendorFullAccess
您可以將AWSVendorInsightsVendorFullAccess政策連接至身分IAM。
此政策授予在 AWS Marketplace Vendor Insights 上建立和管理所有資源的完整存取權。 AWS Marketplace Vendor Insights 會將評估者識別為買方和廠商等於本指南目的的賣方。 AWS Marketplace 更新AWSVendorInsightsVendorFullAccess以新增協議搜尋、更新設定檔快照、廠商標記,並允許唯讀存取 AWS Artifact 第三方報告。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": "aws-marketplace:DescribeEntity", "Resource": "arn:aws:aws-marketplace:*:*:*/SaaSProduct/*" }, { "Effect": "Allow", "Action": "aws-marketplace:ListEntities", "Resource": "*" }, { "Effect": "Allow", "Action": [ "vendor-insights:CreateDataSource", "vendor-insights:UpdateDataSource", "vendor-insights:DeleteDataSource", "vendor-insights:GetDataSource", "vendor-insights:ListDataSources", "vendor-insights:CreateSecurityProfile", "vendor-insights:ListSecurityProfiles", "vendor-insights:GetSecurityProfile", "vendor-insights:AssociateDataSource", "vendor-insights:DisassociateDataSource", "vendor-insights:UpdateSecurityProfile", "vendor-insights:ActivateSecurityProfile", "vendor-insights:DeactivateSecurityProfile", "vendor-insights:UpdateSecurityProfileSnapshotCreationConfiguration", "vendor-insights:UpdateSecurityProfileSnapshotReleaseConfiguration", "vendor-insights:GetSecurityProfileSnapshot", "vendor-insights:ListSecurityProfileSnapshots" "vendor-insights:TagResource", "vendor-insights:UntagResource", "vendor-insights:ListTagsForResource", ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "aws-marketplace:AcceptAgreementApprovalRequest", "aws-marketplace:RejectAgreementApprovalRequest", "aws-marketplace:GetAgreementApprovalRequest", "aws-marketplace:ListAgreementApprovalRequests" "aws-marketplace:CancelAgreement", "aws-marketplace:SearchAgreements" ], "Resource": "*", "Condition": { "ForAllValues:StringEquals": { "aws-marketplace:AgreementType": "VendorInsightsAgreement" } } }, { "Effect": "Allow", "Action": [ "artifact:GetReport", "artifact:GetReportMetadata", "artifact:GetTermForReport", "artifact:ListReports", ], "Resource": "arn:aws:artifact:*::report/*" } ] }
AWS 受管政策: AWSVendorInsightsVendorReadOnly
您可以將AWSVendorInsightsVendorReadOnly政策連接至身分IAM。
此政策授予唯讀存取權,用於檢視 AWS Marketplace Vendor Insights 設定檔和相關資源。 AWS Marketplace Vendor Insights 將評估者識別為買方和供應商等同於本指南的賣方。 AWS Marketplace 已更新AWSVendorInsightsVendorReadOnly以新增許可來列出標籤,並允許唯讀存取 AWS Artifact 第三方報告。
許可詳細資訊
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": "aws-marketplace:DescribeEntity", "Resource": "arn:aws:aws-marketplace:*:*:*/SaaSProduct/*" }, { "Effect": "Allow", "Action": "aws-marketplace:ListEntities", "Resource": "*" }, { "Effect": "Allow", "Action": [ "vendor-insights:GetDataSource", "vendor-insights:ListDataSources", "vendor-insights:ListSecurityProfiles", "vendor-insights:GetSecurityProfile", "vendor-insights:GetSecurityProfileSnapshot", "vendor-insights:ListSecurityProfileSnapshots" "vendor-insights:ListTagsForResource" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "artifact:GetReport", "artifact:GetReportMetadata", "artifact:GetTermForReport", "artifact:ListReports" ], "Resource": "arn:aws:artifact:*::report/*" } ] }
AWS Marketplace 受 AWS 管政策的更新
檢視自此服務開始追蹤這些變更 AWS Marketplace 以來, 受 AWS 管政策更新的詳細資訊。如需此頁面變更的自動提醒,請訂閱頁面上 AWS Marketplace 文件歷史紀錄的RSS摘要。
| 變更 | 描述 | 日期 |
|---|---|---|
|
AWSMarketplaceSellerFullAccess – 更新的政策 |
AWS Marketplace 已新增 |
2024 年 10 月 22 日 |
AWS Marketplace 已新增 |
2024 年 10 月 22 日 |
|
AWS Marketplace 已新增 |
2024 年 10 月 22 日 |
|
|
AWSMarketplaceSellerFullAccess – 更新的政策 |
更新 |
2024 年 6 月 4 日 |
|
AWSMarketplaceGetEntitlements – 更新的政策 |
AWS Marketplace 已更新AWSMarketplaceGetEntitlements為政策陳述sid式新增 。 |
2024 年 3 月 22 日 |
|
AWSMarketplaceSellerFullAccess – 更新的政策 |
AWS Marketplace 已更新AWSMarketplaceSellerFullAccess以新增建立服務連結角色的許可。 |
2024 年 3 月 15 日 |
|
AWSMarketplaceSellerFullAccess – 更新的政策 |
AWS Marketplace 已更新AWSMarketplaceSellerFullAccess以新增存取稅務資訊的許可。 |
2024 年 2 月 8 日 |
| AWSVendorInsightsVendorFullAccess - 更新的政策 | AWS Marketplace 已更新AWSVendorInsightsVendorFullAccess以新增更新資料來源的許可。 |
2023 年 10 月 18 日 |
|
AWSMarketplaceSellerFullAccess – 更新的政策 |
AWS Marketplace 已更新AWSMarketplaceSellerFullAccess以新增共用實體的許可。 |
2023 年 6 月 1 日 |
|
AWSMarketplaceSellerFullAccess – 更新的政策 |
AWS Marketplace 已更新AWSMarketplaceSellerFullAccess以新增與帳戶驗證、銀行帳戶驗證、案例管理和賣方通知詳細資訊相關的許可。 |
2023 年 6 月 1 日 |
|
AWSMarketplaceSellerFullAccess – 更新的政策 |
AWS Marketplace 已更新AWSMarketplaceSellerFullAccess以新增存取賣方儀表板的許可。 |
2022 年 12 月 23 日 |
|
AWSMarketplaceSellerFullAccess, AWSMarketplaceSellerProductsFullAccess, AWSMarketplaceSellerProductsReadOnly – 更新現有政策 |
AWS Marketplace 更新了新標籤型授權功能的政策。 |
2022 年 12 月 9 日 |
|
AWS Marketplace 已更新 AWSVendorInsightsVendorFullAccess |
AWS Marketplace 更新AWSMarketplaceSellerProductsFullAccess以新增協議搜尋、更新設定檔快照、廠商標記,並允許唯讀存取第三方報告 AWS Artifact (預覽)。 |
2022 年 11 月 30 日 |
| AWS Marketplace 已更新 AWSVendorInsightsVendorReadOnly | AWS Marketplace 已更新AWSVendorInsightsVendorReadOnly以新增許可以列出標籤,並允許對第三方報告 (預覽) 的 AWS Artifact 唯讀存取。 |
2022 年 11 月 30 日 |
|
AWSVendorInsightsVendorFullAccess 和 AWSVendorInsightsVendorReadOnly – 新增了政策 |
AWS Marketplace 已新增新功能 AWS Marketplace Vendor Insights: AWSMarketplaceSellerProductsFullAccess和 的政策AWSVendorInsightsVendorReadOnly。 |
2022 年 7 月 26 日 |
| AWSMarketplaceSellerProductsFullAccess和 AWSMarketplaceSellerFullAccess– 更新的政策 | AWS Marketplace 新功能 AWS Marketplace Vendor Insights: AWSMarketplaceSellerProductsFullAccess和 的更新政策AWSMarketplaceSellerFullAccess。 |
2022 年 7 月 26 日 |
|
AWSMarketplaceSellerFullAccess 和 AWSMarketplaceSellerProductsFullAccess – 更新現有政策 |
AWS Marketplace 已更新政策,使iam:PassedToService條件僅套用至 iam:PassRole。 |
2021 年 11 月 22 日 |
|
AWSMarketplaceFullAccess – 更新現有政策 |
AWS Marketplace 已從 |
2021 年 7 月 20 日 |
|
AWS Marketplace 已開始追蹤變更 |
AWS Marketplace 已開始追蹤其 AWS 受管政策的變更。 |
2021 年 4 月 20 日 |
