Available in Classic and VPC
You can set access permissions for Effective Log Search & Analytics 2.0 using Sub Account, NAVER Cloud Platform's account management service. The Sub Account service provides both system-managed and user-created policies for configuring management and administration permissions.
Sub Account is a service provided free of charge upon subscription. For more information about Sub Account, see Services > Management & Governance > Sub Account menu on the NAVER Cloud Platform portal and the Sub Account user guide.
System-managed policies
System-managed policies are pre-built, role-based policies that NAVER Cloud Platform provides for your convenience. A sub-account created through the Sub Account service can be granted access to Effective Log Search & Analytics 2.0 by assigning a system-managed policy. Listed below are brief descriptions of the system-managed policies for Effective Log Search & Analytics 2.0.
| Policy name | Policy description |
|---|---|
| NCP_ADMINISTRATOR | Full access to all services, same as the main account |
| NCP_INFRA_MANAGER | Access to all services, except My Account > Billing and Cost Management > Billing and Payments in the console |
| NCP_FINANCE_MANAGER | Access only to Cost Explorer and My Account > Billing and Cost Management > Billing and Payments in the console |
| NCP_EFFECTIVE_LOG_SEARCH_&_ANALYTICS_2.0_MANAGER | Full access to all features of the Effective Log Search & Analytics 2.0 service |
| NCP_EFFECTIVE_LOG_SEARCH_&_ANALYTICS_2.0_VIEWER | Read-only access to the Effective Log Search & Analytics 2.0 service |
User-defined policies
User-defined policies let you create custom permissions. When you assign a user-defined policy to a sub account, that account can only perform the specific actions you've allowed. Here are the available user-defined policies for Effective Log Search & Analytics 2.0:
| Type | Action | Related action | Resource type | Group by resource type | Action description |
|---|---|---|---|---|---|
| View | View/groupUser | - | Group | Group | View the Groups menu in the console |
| View/projectUser | - | Project | Project | View the Projects menu in the console | |
| Change | Change/groupAdmin | - | Group | Group | Create, edit, and delete groups in the console |
| Change/projectAdmin | - | Project | Project | Create, edit, and delete projects in the console |
If you grant someone access to a specific action but not to the required related actions, they won't be able to complete their tasks. Sub Account automatically includes these related permissions to prevent this issue. However, if you manually uncheck these auto-selected related actions, the system assumes this was intentional and won't override your selection.