|
主な機能
|
-
actiontrail:DescribeTrails
-
adb:DescribeDBClusters
-
gpdb:DescribeDBInstances
-
apigateway:DescribeInstances
-
apigateway:DescribeApiGroups
-
apigateway:DescribeApis
-
cr:ListInstance
-
cr:ListInstanceEndpoint
-
cr:ListRepository cr:ListNamespace
-
cr:ListRepositoryTag ram:ListUsers
-
ram:GetUserMFAInfo
-
ram:GetLoginProfile
-
ram:ListPoliciesForUser
-
ram:ListAccessKeys
-
ram:GetPolicy ram:ListPolicies
-
ram:GetPasswordPolicy
-
ram:ListVirtualMFADevices
-
ram:ListGroups ram:ListRoles
-
ram:GetRole oss:ListBuckets
-
oss:GetBucketInfo
-
oss:GetBucketPolicy
-
oss:GetBucketTagging
-
oss:GetBucketLogging
-
ots:ListInstance
-
ots:ListTable
-
ots:DescribeTable
-
rds:DescribeDBInstances
-
rds:DescribeSQLCollectorPolicy
-
rds:DescribeDBInstanceIPArrayList
-
rds:DescribeDBInstanceSSL
-
rds:DescribeDBInstanceTDE
-
rds:DescribeSQLCollectorRetention
-
rds:DescribeTags
-
cs:DescribeClusterNodePools
-
cs:ListClusterChecks
-
cs:GetClusters
-
cs:DescribeClusters
-
yundun-sas:ListUninstallAegisMachines
-
yundun-sas:DescribeVulConfig
-
yundun-sas:DescribeVersionConfig
-
yundun-sas:DescribeConcernNecessity
-
yundun-aegis:DescribeNoticeConfig
-
yundun-waf:DescribeInstance
-
ecs:DescribeInstances
-
ecs:DescribeDisks
-
ess:DescribeScalingGroups
-
vpc:DescribeVpcs
-
vpc:DescribeNatGateways
-
vpc:DescribeVpnGateways
-
vpc:DescribeEipAddresses
-
fc:ListFunctions fc:GetResourceTags
-
fc:ListLayers
-
fc:ListTagResources
-
ecs:DescribeDedicatedHosts
-
kms:ListKeys
-
kms:DescribeKey
-
kms:ListAliasesByKeyId
-
kms:ListResourceTags
-
kms:GetKeyPolicy
-
kvstore:DescribeInstances
-
alb:ListLoadBalancers
-
alb:ListLoadBalancers
-
nlb:ListLoadBalancers
-
nas:DescribeFileSystems
-
ehpc:ListClusters
-
ehpc:ListTagResources
-
slb:DescribeLoadBalancers
-
cen:DescribeCens
-
elasticsearch:ListInstance
-
dds:DescribeDBInstances
-
eci:DescribeContainerGroups
-
fnf:ListFlows eiam:ListInstances
-
eiam:GetInstance
-
privatelink:ListVpcEndpoints
|
これらの権限はAlibaba CloudアカウントをTrend Vision Oneに接続するために必要です。
|
| Server & Workload Protection |
-
ram:GetAccountAlias ecs:DescribeInstances
-
ecs:DescribeInstanceAttribute
-
ecs:DescribeInstanceStatus
-
ecs:DescribeInstancesFullStatus
-
ecs:DescribeSecurityGroupAttribute
-
ecs:DescribeSecurityGroups
-
ecs:DescribeManagedInstances
-
ecs:DescribeTags
-
vpc:DescribeVSwitches
-
vpc:DescribeVSwitchAttributes
-
vpc:DescribeVpcs
-
vpc:DescribeVpcAttribute
|
|
|
Cloud Security Posture
|
-
actiontrail:DescribeTrails
-
adb:DescribeDBClusters
-
gpdb:DescribeDBInstances
-
apigateway:DescribeInstances
-
apigateway:DescribeApiGroups
-
apigateway:DescribeApis
-
cr:ListInstance
-
cr:ListInstanceEndpoint
-
cr:ListRepository
-
cr:ListNamespace
-
cr:ListRepositoryTag
-
ram:ListUsers
-
ram:GetUserMFAInfo
-
ram:GetLoginProfile
-
ram:ListPoliciesForUser
-
ram:ListAccessKeys
-
ram:GetPolicy
-
ram:ListPolicies
-
ram:GetPasswordPolicy
-
ram:ListVirtualMFADevices
-
ram:ListGroups
-
ram:ListRoles
-
ram:GetRole
-
oss:ListBuckets
-
oss:GetBucketInfo
-
oss:GetBucketPolicy
-
oss:GetBucketTagging
-
oss:GetBucketLogging
-
ots:ListInstance
-
ots:ListTable
-
ots:DescribeTable
-
rds:DescribeDBInstances
-
rds:DescribeSQLCollectorPolicy
-
rds:DescribeDBInstanceIPArrayList
-
rds:DescribeDBInstanceSSL
-
rds:DescribeParameters
-
rds:DescribeDBInstanceTDE
-
rds:DescribeSQLCollectorRetention
-
rds:DescribeTags
-
cs:DescribeClusterNodePools
-
cs:ListClusterChecks
-
cs:GetClusters
-
cs:DescribeClusters
-
yundun-sas:ListUninstallAegisMachines
-
yundun-sas:DescribeVulConfig
-
yundun-sas:DescribeVersionConfig
-
yundun-sas:DescribeConcernNecessity
-
yundun-aegis:DescribeNoticeConfig
-
yundun-waf:DescribeInstance
-
ecs:DescribeInstances
-
ecs:DescribeDisks
-
ess:DescribeScalingGroups
-
vpc:DescribeVpcs
-
vpc:DescribeNatGateways
-
vpc:DescribeVpnGateways
-
vpc:DescribeEipAddresses
-
fc:ListFunctions
-
fc:GetResourceTags
-
fc:ListLayers
-
fc:ListTagResources
-
ecs:DescribeDedicatedHosts
-
kms:ListKeys
-
kms:DescribeKey
-
kms:ListAliasesByKeyId
-
kms:ListResourceTags
-
kms:GetKeyPolicy
-
kvstore:DescribeInstances
-
alb:ListLoadBalancers
-
nlb:ListLoadBalancers
-
nas:DescribeFileSystems
-
ehpc:ListClusters
-
ehpc:ListTagResources
-
slb:DescribeLoadBalancers
-
cen:DescribeCens
-
elasticsearch:ListInstance
-
dds:DescribeDBInstances
-
eci:DescribeContainerGroups
-
fnf:ListFlows
-
eiam:ListInstances
-
eiam:GetInstance
-
privatelink:ListVpcEndpoints
|
|
