Available in VPC
You can set different access permissions for Blockchain Service using NAVER Cloud Platform's Sub Account service. Sub Account offers both system-managed (System Managed) and user-defined (User Created) policies to help you configure management and operation permissions.
Sub Account is a free service with no additional charges. For more information about Sub Account, see Services > Management & Governance > Sub Account on the NAVER Cloud Platform portal and the Sub Account user guide.
System-managed policies
System-managed policies are pre-built, role-based policies that NAVER Cloud Platform provides for your convenience. When you assign one of these policies to a sub account, that account gets access to Blockchain Service. Here are the available system-managed policies for Blockchain Service:
| Policy name | Policy description |
|---|---|
| NCP_ADMINISTRATOR | Full access to all NAVER Cloud Platform services, same as the main account |
| NCP_INFRA_MANAGER | Access to all NAVER Cloud Platform services, except My Account > Billing & cost management > Billing & payment management menu on the console |
| NCP_FINANCE_MANAGER | Access to only the Cost Explorer service and My Account > Billing & cost management > Billing & payment management menu on the console |
| NCP_VPC_BLOCKCHAIN_SERVICE_MANAGER | Full access to all Blockchain Service features |
| NCP_VPC_BLOCKCHAIN_SERVICE_VIEWER | List view and view-only access to all Blockchain Service features |
User-defined policies
User-defined policies let you create custom permissions. When you assign a user-defined policy to a sub account, that account can only perform the specific actions you've allowed. Here are the available user-defined policies for Blockchain Service:
| Type | Action | Related action | Resource type | Group by resource type | Action description |
| ---- | ---- | ---- | ---- | ---- | ---- |
| View | View/exportOrderer | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getOrdererList
View/getOrdererDetail | Orderer | Orderer | Export orderer. |
| View | View/exportOrganization | View/getBlockchainNetworkDetail
View/getOrganizationDetail
View/getBlockchainNetworkList
View/getOrganizationList | Organization | Organization | Export organization. |
| View | View/getBlockchainNetworkDetail | View/getBlockchainNetworkList | Network | Network | View blockchain network details. |
| View | View/getBlockchainNetworkList | - | - | Network | View blockchain network list. |
| View | View/getBlockchainNetworkTopology | View/getPeerList
View/getBlockchainNetworkList
View/getOrdererList
View/getCAList
View/getOrganizationList | Network | Network | View network configuration information. |
| View | View/getCADetail | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getCAList | CA | CA | View CA details. |
| View | View/getCAList | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | - | CA | View CA list. |
| View | View/getCAUserIdentityList | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | CA | CA | View CA user identity list. |
| View | View/getChaincodeList | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | - | Channel | View chaincode list. |
| View | View/getChannelBlockTransactionLog | View/getChannelList
View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getChannelDetail | Channel | Channel | View channel block and transaction log. |
| View | View/getChannelDetail | View/getBlockchainNetworkDetail
View/getChannelList
View/getBlockchainNetworkList | Channel | Channel | View channel details. |
| View | View/getChannelList | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | - | Channel | View channel list. |
| View | View/getChannelOrganizationList | View/getChannelList
View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getChannelDetail | Channel | Channel | View channel organization list. |
| View | View/getInvitationList | - | - | Network | View network invitation list. |
| View | View/getKubernetesClusterDetail | View/getKubernetesClusterList | VPCKubernetesService:Cluster | Network | View Kubernetes cluster details. |
| View | View/getKubernetesClusterList | - | - | Network | View Kubernetes cluster list. |
| View | View/getOrdererDetail | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getOrdererList | Orderer | Orderer | View orderer details. |
| View | View/getOrdererList | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getOrdererList | - | Orderer | View orderer list. |
| View | View/getOrganizationConnectionProfile | View/getBlockchainNetworkDetail
View/getOrganizationDetail
View/getBlockchainNetworkList
View/getOrganizationList | - | Organization | Download organization access information. |
| View | View/getOrganizationDetail | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getOrganizationList | Organization | Organization | View organization details. |
| View | View/getOrganizationList | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | - | Organization | View organization list. |
| View | View/getPeerDetail | View/getPeerList
View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | Peer | Peer | View peer details. |
| View | View/getPeerList | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | - | Peer | View peer list. |
| View | View/getPeerListInstallable | View/getPeerList
View/getPeerDetail
View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | - | Channel | View list of peers available for chaincode installation. |
| View | View/watchCAStatus | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getCAList
View/getCADetail | CA | CA | View CA container monitoring information. |
| View | View/watchOrdererStatus | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getOrdererList
View/getOrdererDetail | Orderer | Orderer | View orderer container monitoring information. |
| View | View/watchPeerStatus | View/getPeerList
View/getPeerDetail
View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | Peer | Peer | View peer container monitoring information. |
| Change | Change/createBlockchainNetwork | View/getKubernetesClusterList
Change/createPeer
View/getBlockchainNetworkList
Change/createOrderer
Change/createCA
Change/createOrganization
Change/createChannel
View/getKubernetesClusterDetail | - | Network | Create blockchain network. |
| Change | Change/createCA | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getCAList | - | CA | Create CA. |
| Change | Change/createChannel | View/getBlockchainNetworkDetail
View/getChannelList
View/getOrganizationDetail
View/getBlockchainNetworkList
View/getOrdererList
Change/updateChannelOrganizations
View/getOrdererDetail
View/getOrganizationList | - | Channel | Create channel. |
| Change | Change/createOrderer | View/getCAUserIdentityList
View/getBlockchainNetworkDetail
View/getOrganizationDetail
View/getBlockchainNetworkList
View/getOrdererList
View/getOrganizationList | - | Orderer | Create orderer. |
| Change | Change/createOrganization | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getCAList
View/getCADetail
View/getOrganizationList | - | Organization | Create organization. |
| Change | Change/createPeer | View/getPeerList
View/getCAUserIdentityList
View/getBlockchainNetworkDetail
View/getOrganizationDetail
View/getBlockchainNetworkList
View/getOrganizationList | - | Peer | Create peer. |
| Change | Change/deleteBlockchainNetwork | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | Network | Network | Delete blockchain network. |
| Change | Change/deleteCA | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getCAList
View/getCADetail | CA | CA | Delete CA. |
| Change | Change/deleteOrderer | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getOrdererList
View/getOrdererDetail | Orderer | Orderer | Delete orderer. |
| Change | Change/deleteOrganization | View/getBlockchainNetworkDetail
View/getOrganizationDetail
View/getBlockchainNetworkList
View/getOrganizationList | Organization | Organization | Delete organization. |
| Change | Change/deletePeer | View/getPeerList
View/getPeerDetail
View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | Peer | Peer | Delete peer. |
| Change | Change/executeChaincode | View/getChaincodeList
View/getChannelList
View/getOrganizationDetail
View/getChannelOrganizationList
View/getChannelDetail | Channel | Channel | Execute chaincode. |
| Change | Change/importOrderer | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getOrdererList
View/getOrdererDetail | - | Orderer | Import orderer. |
| Change | Change/importOrganization | View/getBlockchainNetworkDetail
View/getOrganizationDetail
View/getBlockchainNetworkList
View/getOrganizationList | - | Organization | Import organization. |
| Change | Change/installChaincode | View/getPeerDetail
View/getChaincodeList
View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getPeerListInstallable | Peer | Channel | Install chaincode. |
| Change | Change/instantiateChaincode | View/getChaincodeList
View/getOrganizationDetail
View/getChannelList
View/getChannelOrganizationList
View/getChannelDetail | Channel | Channel | Enable chaincode. |
| Change | Change/inviteToNetwork | View/getBlockchainNetworkDetail
View/getChannelList
View/getBlockchainNetworkList
View/getChannelDetail | - | Network | Invite other users to network. |
| Change | Change/manageInvitation | View/getInvitationList
View/getBlockchainNetworkDetail
View/getOrganizationDetail
View/getBlockchainNetworkList
View/getOrganizationList | - | Network | Respond to network invitation. |
| Change | Change/resizeCAResources | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getCAList
View/getCADetail | CA | CA | Change CA resource settings. |
| Change | Change/resizeLoadBalancerThroughput | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | Network | Network | Set network Load Balancer throughput. |
| Change | Change/resizeOrdererResources | View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getOrdererList
View/getOrdererDetail | Orderer | Orderer | Change orderer resource settings. |
| Change | Change/resizePeerResources | View/getPeerList
View/getPeerDetail
View/getBlockchainNetworkDetail
View/getBlockchainNetworkList | Peer | Peer | Change peer resource settings. |
| Change | Change/updateCAUserIdentities | View/getCAUserIdentityList
View/getBlockchainNetworkDetail
View/getBlockchainNetworkList
View/getCAList
View/getCADetail | CA | CA | Change CA user identity settings. |
| Change | Change/updateChannelBatchconfig | View/getBlockchainNetworkDetail
View/getChannelList
View/getBlockchainNetworkList
Change/updateChannelOrganizations
View/getChannelDetail | Channel | Channel | Change channel batch config settings. |
| Change | Change/updateChannelOrganizations | View/getBlockchainNetworkDetail
View/getOrganizationDetail
View/getChannelList
View/getBlockchainNetworkList
View/getChannelOrganizationList
View/getOrganizationList
View/getChannelDetail | Channel | Channel | Change channel organization settings. |
| Change | Change/updateChannelPeers | View/getPeerList
View/getBlockchainNetworkDetail
View/getChannelList
View/getBlockchainNetworkList
View/getPeerListInstallable
View/getChannelDetail | Channel | Channel | Change settings of peers participating in channel. |
| Change | Change/updateConsortium | View/getBlockchainNetworkDetail
View/getOrganizationDetail
View/getBlockchainNetworkList
View/getOrdererList
View/getOrdererDetail
View/getOrganizationList | Orderer | Orderer | Change orderer consortium settings. |
| Change | Change/upgradeChaincode | View/getChaincodeList
View/getOrganizationDetail
View/getChannelList
Change/instantiateChaincode
View/getChannelOrganizationList
View/getChannelDetail | Channel | Channel | Upgrade chaincode. |
If you grant someone access to a specific action but not to the required related actions, they won't be able to complete their tasks. Sub Account automatically includes these related permissions to prevent this issue. However, if you manually uncheck these auto-selected related actions, the system assumes this was intentional and won't override your selection.