Managing Load Balancer permissions
    • PDF

    Managing Load Balancer permissions

    • PDF

    Article Summary

    Available in VPC

    By using Sub Account, NAVER Cloud Platform's account management service, you can set various access permissions for Load Balancer. Sub Account provides System Managed policies and User Created policies for setting management and administration permissions.

    Note

    Sub Account is a service provided free of charge upon subscription request. For more information on Sub Account, refer to the Services > Management & Governance > Sub Account menu in the NAVER Cloud Platform portal, as well as the Sub Account Guide.

    System Managed policies

    System Managed policies are role-based policies defined by NAVER Cloud Platform for user convenience. Once System Managed policies are granted to a sub account created in Sub Account, that sub account can use Load Balancer. The following is a brief description about System Managed policies of Load Balancer.

    Policy namePolicy description
    NCP_VPC_LOAD_BALANCER_MANAGERPermission to use all features of the VPC-based Load Balancer product
    NCP_VPC_LOAD_BALANCER_VIEWERPermission to only use the View feature of the VPC-based Load Balancer product

    User Created policies

    User Created policies are policies that users can create. Once User Created policies are granted to a sub account created in Sub Account, that sub account can only use the user-assigned action combinations. The following is a brief description about User Created policies of Load Balancer.

    TypeAction nameRelated action(s)Resource typeGroup by resource typeAction description
    ViewView/getLoadBalancerInstanceDetailView/getLoadBalancerInstanceListLoadBalancerLoadBalancerSelect server to apply load balancer.
    ViewView/getLoadBalancerInstanceList--LoadBalancerView list of servers to apply load balancer.
    ViewView/getLoadBalancerMonitorView/getLoadBalancerListenerList
    View/getLoadBalancerInstanceList
    View/getLoadBalancerInstanceDetail
    LoadBalancerLoadBalancerLoad balancer monitoring
    ViewView/getSSLCertificateDetailView/getSSLCertificateListCertificateManager:CertificateLoadBalancerSelect certificate for HTTPS listener configuration.
    ViewView/getSSLCertificateList--LoadBalancerView certificate list for HTTPS listener configuration.
    ViewView/downloadLoadBalancerList-LoadBalancerLoadBalancerDownload load balancer information.
    ViewView/getVPCList--VPCView VPC list to create servers.
    ViewView/getVPCDetailView/getVPCListVPC:VPCVPCView VPC details.
    ViewView/downloadTargetGroupList-TargetGroupTargetGroupDownload target group information.
    ViewView/getLoadBalancerListenerDetailView/getLoadBalancerListenerListListenerListenerSelect load balancer listener and view its details.
    ViewView/getLoadBalancerListenerListView/getLoadBalancerInstanceList
    View/getLoadBalancerInstanceDetail
    LoadBalancerListenerView load balancer listener list.
    ViewView/getLoadBalancerRuleDetailView/getLoadBalancerInstanceListRuleRuleView load balancer’s branching rule details.
    ViewView/getLoadBalancerRuleListView/getLoadBalancerListenerList
    View/getLoadBalancerInstanceDetail
    View/getLoadBalancerInstanceList
    ListenerRuleView load balancer branching rule list.
    ViewView/getServerInstanceDetailView/getServerInstanceListVPCServer:ServerServerView server details.
    ViewView/getServerInstanceList--ServerView server instance (VM) list.
    ViewView/getSubnetDetailView/getSubnetListVPC:SubnetSubnetView subnet details.
    ViewView/getSubnetList--SubnetView subnet list.
    ViewView/getTargetGroupDetailView/getTargetGroupListTargetGroupTargetGroupSelect target group and view its details.
    ViewView/getTargetGroupListView/getTargetGroupDetail-TargetGroupDownload target group list.
    ViewView/getTargetGroupMonitorView/getTargetGroupDetail
    View/getTargetGroupList
    TargetGroupTargetGroupTarget group monitoring
    ViewView/getTargetListView/getTargetGroupDetail
    View/getTargetGroupList
    TargetGroupTargetGroupView binding target list.
    ChangeChange/changeLoadBalancerInstanceConfigurationView/getSSLCertificateDetail
    Change/setLoadbalancerAccesslog
    View/getSSLCertificateList
    View/getLoadBalancerInstanceList
    View/getLoadBalancerInstanceDetail
    LoadBalancerLoadBalancerModify load balancer settings.
    ChangeChange/changeLoadBalancerListenerConfigurationView/getSSLCertificateDetail
    View/getLoadBalancerListenerList
    View/getSSLCertificateList
    View/getLoadBalancerListenerDetail
    ListenerListenerModify load balancer details.
    ChangeChange/changeLoadBalancerRuleConfigurationView/getTargetGroupDetail
    View/getLoadBalancerListenerList
    View/getTargetGroupList
    View/getLoadBalancerListenerDetail
    View/getLoadBalancerInstanceList
    View/getLoadBalancerInstanceDetail
    View/getLoadBalancerRuleList
    RuleRuleModify load balancer rule settings.
    ChangeChange/changeTargetGroupConfigurationView/getTargetGroupDetail
    View/getTargetGroupList
    TargetGroupTargetGroupModify target group settings.
    ChangeChange/changeTargetGroupHealthCheckConfigurationView/getTargetGroupDetail
    View/getTargetGroupList
    TargetGroupTargetGroupModify target group’s health check rule.
    ChangeChange/createLoadBalancerInstanceView/getSubnetList
    View/getSSLCertificateDetail
    View/getTargetGroupDetail
    View/getTargetGroupList
    View/getSubnetDetail
    View/getServerInstanceList
    View/getSSLCertificateList
    View/getServerInstanceDetail
    View/getLoadBalancerInstanceList
    View/getVPCDetail
    View/getVPCList
    -LoadBalancerCreate load balancer.
    ChangeChange/createLoadBalancerListenerView/getSSLCertificateDetail
    View/getTargetGroupDetail
    View/getLoadBalancerListenerList
    View/getTargetGroupList
    View/getSSLCertificateList
    View/getLoadBalancerListenerDetail
    -ListenerCreate load balancer listener.
    ChangeChange/createLoadBalancerRuleView/getTargetGroupDetail
    View/getLoadBalancerListenerList
    View/getTargetGroupList
    View/getLoadBalancerInstanceList
    View/getLoadBalancerInstanceDetail
    View/getLoadBalancerRuleList
    -RuleCreate load balancer branching rule.
    ChangeChange/createTargetGroupView/getTargetGroupDetail
    View/getTargetGroupList
    View/getServerInstanceList
    View/getServerInstanceDetail
    View/getVPCDetail
    View/getVPCList
    -TargetGroupCreate target group.
    ChangeChange/deleteLoadBalancerInstanceView/getLoadBalancerInstanceList
    View/getLoadBalancerInstanceDetail
    LoadBalancerLoadBalancerDelete load balancer.
    ChangeChange/deleteLoadBalancerListenerView/getLoadBalancerListenerList
    View/getLoadBalancerListenerDetail
    ListenerListenerDelete load balancer listener.
    ChangeChange/deleteLoadBalancerRuleView/getLoadBalancerListenerList
    View/getLoadBalancerInstanceList
    View/getLoadBalancerInstanceDetail
    View/getLoadBalancerRuleDetail
    View/getLoadBalancerRuleList
    RuleRuleDelete load balancer branching rule.
    ChangeChange/deleteTargetGroupView/getTargetGroupListTargetGroupTargetGroupDelete targetGroup.
    ChangeChange/setLoadBalancerDescriptionView/getLoadBalancerInstanceList
    View/getLoadBalancerInstanceDetail
    LoadBalancerLoadBalancerModify load balancer memo.
    ChangeChange/setLoadBalancerInstanceSubnetView/getSubnetList
    View/getSubnetDetail
    View/getLoadBalancerInstanceList
    View/getLoadBalancerInstanceDetail
    LoadBalancerLoadBalancerSet load balancer subnet.
    ChangeChange/setLoadbalancerAccesslog-LoadBalancerLoadBalancerCollect load balancer’s access log and link with the CLA service.
    ChangeChange/setTargetView/getTargetGroupList
    View/getServerInstanceList
    View/getServerInstanceDetail
    TargetGroupTargetGroupSet target group’s binding target.
    ChangeChange/setTargetGroupDescriptionView/getTargetGroupListTargetGroupTargetGroupModify target group memo.
    Caution

    Even when you are granted permission for a specific action, if you are not also granted permissions for the related actions that are required, then you won't be able to perform jobs properly. To prevent such issues, Sub Account provides a feature that automatically grants permissions for related actions when granting action permissions. However, if you deselect related actions that are automatically granted, then the system determines that it was done intentionally by the main account user and won't forcibly include them. So, be careful when setting permissions.


    Was this article helpful?

    Changing your password will log you out immediately. Use the new password to log back in.
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.