Data Catalog permissions management

Available in VPC

You can set different access permissions for Data Catalog using NAVER Cloud Platform's Sub Account service. Sub Account offers both system-managed (System Managed) and user-defined (User Created) policies to help you configure management and operation permissions.

Note

Sub Account is a free service with no additional charges. For more information about Sub Account, see Services > Management & Governance > Sub Account on the NAVER Cloud Platform portal and the Sub Account user guide.

System-managed policies

System-managed policies are pre-built, role-based policies that NAVER Cloud Platform provides for your convenience. When you assign one of these policies to a sub account, that account gets access to Data Catalog. Here are the available system-managed policies for Data Catalog:

Policy name	Policy description
NCP_ADMINISTRATOR	Full access to all services, same as the main account
NCP_INFRA_MANAGER	Access to all services, except My Account > Manage Billing Information and Payment > Manage Billing and Payment on the console
NCP_FINANCE_MANAGER	Access limited to the Cost Explorer services and My Account > Manage Billing Information and Payment > Manage Billing and Payment on the console
NCP_VPC_DATA_CATALOG_MANAGER	Full access to all features of the VPC-based Data Catalog
NCP_VPC_DATA_CATALOG_VIEWER	View-only access to all Data Catalog features on the VPC platform

User-defined policies

User-defined policies let you create custom permissions. When you assign a user-defined policy to a sub account, that account can only perform the specific actions you've allowed. Here are the available user-defined policies for Data Catalog:

Type	Action	Related action	Resource type	Group by resource type	Action description
View	View/getBucketList	View/getObjectList	ObjectStorage :Bucket	ObjectStorage :Bucket	View details about a classifier
View	View/getClassifierDetail	View/getClassifierList	Classifier	Classifier	View details about a classifier
View	View/getClassifierList	-	-	Classifier	View a list of classifiers
View	View/getConnectionDetail	View/getConnectionList	Connection	Connection	View details about a connection
View	View/getConnectionList	-	-	Connection	View a list of connections
View	View/getDatabaseDetail	View/getDatabaseList View/getTableDetail View/getTableList View/getTagTemplateDetail View/getTagTemplateList	Database	Database	View detailed information about a database in the Data Catalog
View	View/getDatabaseList	-	-	Database	View a list of databases in the Data Catalog
View	View/getMongoDBServiceDetail	View/getMongoDBServiceList	VPCCloudDBforMongoDB :Service	VPCCloudDBforMongoDB :Service	View CDB for MongoDB Service (DB) details
View	View/getMongoDBServiceList	-	-	VPCCloudDBMongoDB :Service	View CDB for MongoDB Service (DB) list
View	View/getMssqlDBServiceDetail	View/getMssqlDBServiceList	VPCCloudDBforMssqlDB :Service	VPCCloudDBforMssqlDB :Service	View CDB for MssqlDB Service (DB) details
View	View/getMssqlDBServiceList	-	-	VPCCloudDBforMssqlDB :Service	View CDB for MssqlDB Service (DB) list
View	View/getMysqlDBServiceDetail	View/getMysqlDBServiceList	VPCCloudDBforMysqlDB :Service	VPCCloudDBforMysqlDB :Service	View CDB for MysqlDB Service (DB) details
View	View/getMysqlDBServiceList	-	-	VPCCloudDBforMySQL :Service	View CDB for MysqlDB Service (DB) List
View	View/getPostgreSQLDBServiceDetail	View/getPostgreSQLDBServiceList	VPCCloudDBforPostgreSQLDB :Service	VPCCloudDBforPostgreSQLDB :Service	View CDB for PostgreSQLDB Service (DB) Details
View	View/getPostgreSQLDBServiceList	-	-	VPCCloudDBforPostgreSQLDB :Service	View CDB for PostgreSQLDB Service (DB) list
View	View/getObjectList	View/getBucketList	ObjectStorage :Bucket	ObjectStorage :Bucket	Perform a read operation on an object in Object Storage
View	View/getScannerDetail	View/getScannerList	Scanner	Scanner	View scanner details
View	View/getScannerList	-	-	Scanner	View a list of scanners
View	View/getTableDetail	View/getTableList	Table	Table	View table details for a table in the Data Catalog
View	View/getTableList	-	-	Table	View a list of tables in the Data Catalog
View	View/getTagTemplateDetail	View/getTagTemplateList	TagTemplate	TagTemplate	View details about a tag template
View	View/getTagTemplateList	-	-	TagTemplate	View a list of tag templates
Change	Change/createClassifier	-	-	Classifier	Create a classifier
Change	Change/createConnection	View/getMongoDBServiceDetail View/getMongoDBServiceList View/getMssqlDBServiceDetail View/getMssqlDBServiceList View/getMysqlDBServiceDetail View/getMysqlDBServiceList View/getPostgreSQLDBServiceDetail View/getPostgreSQLDBServiceList	-	Connection	Create a connection
Change	Change/createDatabase	View/getTagTemplateDetail View/getTagTemplateList View/getBucketList View/getObjectList	-	Database	Create a database for the Data Catalog
Change	Change/createScanner	View/getClassifierDetail View/getClassifierList View/getConnectionDetail View/getConnectionList View/getDatabaseDetail View/getDatabaseList Change/createConnection Change/createClassifier View/getBucketList View/getObjectList	-	Scanner	Create a scanner
Change	Change/createTable	View/getDatabaseDetail View/getDatabaseList View/getTagTemplateDetail View/getTagTemplateList	-	Table	Create tables in the Data Catalog
Change	Change/createTagTemplate	-	-	TagTemplate	Create a tag template
Change	Change/deleteClassifier	View/getClassifierDetail View/getClassifierList	Classifier	Classifier	Delete a classifier
Change	Change/deleteConnection	View/getConnectionDetail View/getConnectionList	Connection	Connection	Delete a connection
Change	Change/deleteDatabase	View/getDatabaseDetail View/getDatabaseList View/getTagTemplateDetail View/getTagTemplateList	Database	Database	Delete databases in the Data Catalog
Change	Change/deleteScanner	View/getClassifierDetail View/getClassifierList View/getConnectionDetail View/getConnectionList View/getDatabaseDetail View/getDatabaseList View/getScannerDetail View/getScannerList	Scanner	Scanner	Delete a scanner
Change	Change/deleteTable	View/getTableDetail View/getTableList	Table	Table	Delete tables in the Data Catalog
Change	Change/deleteTagTemplate	View/getTagTemplateDetail View/getTagTemplateList	TagTemplate	TagTemplate	Delete a tag template
Change	Change/pauseScannerSchedule	View/getClassifierDetail View/getClassifierList View/getConnectionDetail View/getConnectionList View/getDatabaseDetail View/getDatabaseList View/getScannerDetail View/getScannerList	Scanner	Scanner	Pause the scanner's run cycle
Change	Change/reloadDataCatalog	-	Catalog	Catalog	Reload Data Catalog settings information
Change	Change/resumeScannerSchedule	View/getClassifierDetail View/getClassifierList View/getConnectionDetail View/getConnectionList View/getDatabaseDetail View/getDatabaseList View/getScannerDetail View/getScannerList	Scanner	Scanner	Restart the scanner's run cycle
Change	Change/runScanner	View/getClassifierDetail View/getClassifierList View/getConnectionDetail View/getConnectionList View/getDatabaseDetail View/getDatabaseList View/getScannerDetail View/getScannerList	Scanner	Scanner	Run the scanner
Change	Change/stopScanner	View/getClassifierDetail View/getClassifierList View/getConnectionDetail View/getConnectionList View/getDatabaseDetail View/getDatabaseList View/getScannerDetail View/getScannerList	Scanner	Scanner	Stop scanner from running
Change	Change/subscribeProduct	-	Catalog	Catalog	Subscribe to or unsubscribe from Data Catalog
Change	Change/updateClassifier	View/getClassifierDetail View/getClassifierList	Classifier	Classifier	Edit classifiers
Change	Change/updateConnection	View/getScannerDetail View/getScannerList	Connection	Connection	Edit connections
Change	Change/updateDatabase	View/getDatabaseDetail View/getDatabaseList View/getTagTemplateDetail View/getTagTemplateList View/getBucketList View/getObjectList	Database	Database	Edit databases in the Data Catalog
Change	Change/updateScanner	View/getConnectionDetail View/getConnectionList View/getDatabaseDetail View/getDatabaseList View/getScannerDetail View/getScannerList View/getClassifierDetail View/getClassifierList	Scanner	Scanner	Edit the scanner
Change	Change/updateTable	View/getDatabaseDetail View/getDatabaseList View/getTagTemplateDetail View/getTagTemplateList	Table	Table	Edit tables in the Data Catalog
Change	Change/updateTagTemplate	View/getTagTemplateDetail View/getTagTemplateList	TagTemplate	TagTemplate	Edit tag templates

Caution

If you grant someone access to a specific action but not to the required related actions, they won't be able to complete their tasks. Sub Account automatically includes these related permissions to prevent this issue. However, if you manually uncheck these auto-selected related actions, the system assumes this was intentional and won't override your selection.