- Print
- PDF
Managing File Safer permissions
- Print
- PDF
Available in Classic and VPC
You can use NAVER Cloud Platform's account management service, i.e., Sub Account, to set File Safer's access permissions in various ways. Sub Account provides System managed policies and User created policies for setting management and administration permissions.
Sub Account is a service provided free of charge upon subscription. For more details about Sub Account, see the Services > Management & Governance > Sub Account menu in the NAVER Cloud Platform portal, as well as the Sub Account user guide.
System managed policies
System managed policies are role-based policies defined by NAVER Cloud Platform for user convenience. If you assign a system managed policy to a sub account created in Sub Account, the authorized sub account can use File Safer. The following is a brief description of system managed policies of File Safer.
Policy name | Policy description |
---|---|
NCP_ADMINISTRATOR | Permission to access the portal and console on NAVER Cloud Platform in the same manner as main accounts |
NCP_INFRA_MANAGER | Permission to use all services in NAVER Cloud Platform and access My Page > Manage notifications in the portal |
NCP_FILE_SAFER_MANAGER | Permission to use all features of File Safer |
NCP_FILE_SAFER_VIEWER | Permission to use the View List and Search functions of File Safer |
User created policies
User created policies are policies that users may directly create. Once User created policies are granted to a sub account created in Sub Account, that sub account can only use the user-assigned action combinations. The following is a brief description of the user-created policy of File Safer
Classification | Action name | Related actions | Resource type | Group by resource type | Action description |
---|---|---|---|---|---|
View | View/getHashFilterUsage | - | - | - | Checking Hash Filter usage |
View | View/getHashFilterDashboard | - | - | - | View Hash Filter's numerical status of scan results from 00 AM to the present. |
View | View/getHashCheckLog | - | - | - | Check hash detection history |
View | View/getHashCheck | - | - | - | Check if the hash is malicious |
View | View/getNotificationSetting | - | - | - | View the list of notification target settings |
View | View/getFileFilterUsage | - | - | - | Check the usage of File Filter |
View | View/getFileFilterDashboard | - | - | - | View File Filter's numeric value status information for scan results from 00 AM to present |
View | View/getFileAnalyzeLog | - | - | - | Check the analysis history of File Filter |
View | View/analyzeFile | - | - | - | Check if the file is malicious |
Change | Change/setHashFilterNotiConfig | - | - | - | Set Hash Filter analysis result notifications |
Change | Change/manageNotificationSetting | View/getNotificationSetting | - | - | Notification target settings |
Change | Change/subscribeProduct | - | - | - | Subscribe and unsubscribe File Safer |
Change | Change/setFileFilterNotiConfig | - | - | - | Set File Filter analysis result notifications |
Even when you are granted permission for a specific action, if you are not also granted permissions for the related actions that are required, then you won't be able to perform jobs properly. To prevent such issues, Sub Account provides a feature that automatically grants permissions for related actions when granting action permissions. However, if you deselect related actions that are automatically granted, then the system determines that it was done intentionally by the main account user and does not forcibly include them. Thus, be careful when setting permissions.