Cloud DB for MSSQL permissions management

Available in VPC

You can set different access permissions for Cloud DB for MSSQL using NAVER Cloud Platform's Sub Account service. Sub Account offers both system-managed (System Managed) and user-defined (User Created) policies to help you configure management and operation permissions.

System-managed policies

System-managed policies are pre-built, role-based policies that NAVER Cloud Platform provides for your convenience. When you assign one of these policies to a sub account, that account gets access to Cloud DB for MSSQL. Here are the available system-managed policies for Cloud DB for MSSQL:

User-defined policies

User-defined policies let you create custom permissions. When you assign a user-defined policy to a sub account, that account can only perform the specific actions, you've allowed. Here are the available user-defined policies for Cloud DB for MSSQL:

| Type | Action | Related action | Resource type | Group by resource type | Action description |
| ---- | ---- | ---- | ---- | ---- | ---- |
| View | View/getDBServiceList | - | - | Service | View a list of services (DB) |
| View | View/getVPCList | - | - | Service | View the list of VPCs required for the service |
| View | View/getVPCDetail | View/getVPCList | VPC:VPC | Service | Check the VPCs accessible for the service |
| View | View/getSubnetDetail | View/getSubnetList | VPC:Subnet | Service | Check the subnets accessible for the service |
| View | View/getSubnetList | - | - | Service | View the list of subnets required for the service |
| View | View/getDBServiceDetail | View/getDBServiceList | Service | Service | View detailed information about the service (DB) |
| View | View/getDBDashboard | View/getDBServiceList
View/getDBServiceDetail | Service | Service | View the monitoring DB dashboard for the service (DB) |
| View | View/getPerformanceDashboard | View/getDBServiceList
View/getDBServiceDetail | Service | Service | View monitoring performance for the service (DB) |
| View | View/getDBLogs | View/getDBServiceList
View/getDBServiceDetail | Service | Service | View DB logs for the service (DB) |
| View | View/getDBServerEventDetail | View/getDBServiceList
View/getDBServerEventList | Service | Service | View detailed information about server (DB) events |
| View | View/getDBServerEventList | View/getDBServiceList | - | Service | View the list of server (DB) events |
| View | View/getDBBackupList | View/getDBServiceList | - | Service | View the list of backups for the service (DB) |
| View | View/getDBBackupDetail | View/getDBBackupList
View/getDBServiceList
View/getDBServiceDetail | Service | Service | View backup information for the service (DB) |
| View | View/getConfigGroupList | - | - | ConfigGroup | View the list of config groups |
| View | View/getConfigGroupDetail | View/getConfigGroupList | ConfigGroup | ConfigGroup | View detailed information about a config group |
| View | View/getDBServerLogs | View/getDBServiceList
View/getDBServiceDetail | Service | Service | View log files for the service (DB) |
| View | View/getBucketList | - | Service | Service | View the bucket list |
| View | View/getBucketDetail | View/getBucketList | ObjectStorage:Bucket | Service | Select a bucket |
| View | View/getAuditLogStatus | View/getDBServiceList
View/getDBServiceDetail | Service | Service | View audit plugin option information for the service (DB) |
| View | View/getLogBackupFileList | View/getDBServiceList
View/getDBServiceDetail
View/getBucketList
View/getBucketDetail | Service | Service | View the list of log backups for the service (DB) |
| View | View/getOperatingSystemConfig | View/getDBServiceList
View/getDBServiceDetail | Service | Service | View the settings required for upgrading the operating system of the service (DB) |
| Change | Change/createDBService | View/getVPCList
View/getVPCDetail
View/getSubnetList
View/getSubnetDetail
View/getDBServiceList
View/getConfigGroupList
View/getConfigGroupDetail | - | Service | Create a service (DB) |
| Change | Change/restartDBService | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Restart the service (DB) |
| Change | Change/setHA | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Change the service (DB) to a high availability configuration |
| Change | Change/setStandalone | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Change the service (DB) to a standalone configuration |
| Change | Change/manageSlaveReadableTime | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Configure the readable time for slave servers |
| Change | Change/manageDBServiceName | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Change the DB service name |
| Change | Change/deleteDBServer | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Delete a slave server of the service (DB) |
| Change | Change/deleteDBService | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Delete the service (DB) (Master, Standalone) |
| Change | Change/addSlave | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Add a slave DB to the service (DB) |
| Change | Change/manageBackup | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Manage backup settings for the service (DB) |
| Change | Change/deleteBackup | View/getDBServiceList
View/getDBServiceDetail
View/getDBBackupList
View/getDBBackupDetail | Service | Service | Delete backup files for the service |
| Change | Change/changeDBSpec | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Change specifications of the service (DB) |
| Change | Change/managePublicDomain | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Request a public domain to allow external access to the DB server |
| Change | Change/recoveryToTime | View/getDBServiceList
View/getDBServiceDetail
View/getSubnetList
View/getSubnetDetail
View/getDBBackupList
View/getDBBackupDetail | Service | Service | Create a new service using a backup file |
| Change | Change/manageDatabase | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Manage databases |
| Change | Change/manageUserAccount | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Manage users for the service (DB) |
| Change | Change/createConfigGroup | View/getConfigGroupList | - | ConfigGroup | Create a config group |
| Change | Change/manageConfigGroup | View/getConfigGroupList
View/getConfigGroupDetail | ConfigGroup | ConfigGroup | Modify a config group |
| Change | Change/manageClusterConfigGroup | View/getDBServiceList
View/getDBServiceDetail
View/getConfigGroupList
View/getConfigGroupDetail | Service | Service | Apply a config group to another service |
| Change | Change/deleteConfigGroup | View/getConfigGroupList
View/getConfigGroupDetail | ConfigGroup | ConfigGroup | Delete a config group |
| Change | Change/upgradeDBEngine | View/getDBServiceList
View/getDBServiceDetail | Service | Service | Upgrade the MSSQL engine version of the service (DB) |
| Change | Change/manageAuditPlugin | View/getDBServiceList
View/getDBServiceDetail
View/getAuditLogStatus | Service | Service | Configure audit plugin options for the service (DB) |
| Change | Change/exportDBServerLogsToObjectStorage | View/getDBServiceList
View/getDBServiceDetail
View/getBucketList
View/getBucketDetail
View/getDBServerLogs | Service | Service | Export selected log files to Object Storage |
| Change | Change/exportBackupToObjectStorage | View/getDBServiceList
View/getDBServiceDetail
View/getBucketList
View/getBucketDetail
View/getDBBackupList
View/getDBBackupDetail
View/getLogBackupFileList | Service | Service | Export selected backup files to Object Storage |
| Change | Change/manageOperatingSystem | View/getDBServiceList
View/getDBServiceDetail
View/getOperatingSystemConfig | Service | Service | Upgrade the operating system of the service (DB) |