Available in VPC
You can set different access permissions for Load Balancer using NAVER Cloud Platform's Sub Account service. Sub Account offers both system-managed (System Managed) and user-defined (User Created) policies to help you configure management and operation permissions.
Sub Account is a free service with no additional charges. For more information about Sub Account, see Services > Management & Governance > Sub Account on the NAVER Cloud Platform portal and the Sub Account user guide.
System-managed policies
System-managed policies are pre-built, role-based policies that NAVER Cloud Platform provides for your convenience. When you assign one of these policies to a sub account, that account gets access to Load Balancer. Here are the available system-managed policies for Load Balancer:
| Policy name | Policy description |
|---|---|
| NCP_ADMINISTRATOR | Full access to all services, with the same scope as the main account |
| NCP_INFRA_MANAGER | Access to all services, except the My Account > Billing Information and Cost Management > Billing and Payment Management menu in the console |
| NCP_FINANCE_MANAGER | Access only to the Cost Explorer service and the My Account > Billing Information and Cost Management > Billing and Payment Management menu in the console |
| NCP_VPC_LOAD_BALANCER_MANAGER | Full access to all Load Balancer pr features on the VPC platform |
| NCP_VPC_LOAD_BALANCER_VIEWER | View-only access to all Load Balancer features within the product on the VPC platform |
User-defined policies
User-defined policies let you create custom permissions. When you assign a user-defined policy to a sub account, that account can only perform the specific actions you've allowed. Here are the available user-defined policies for Load Balancer:
| Type | Action | Related action | Resource type | Group by resource type | Action description |
| ---- | ---- | ---- | ---- | ---- | ---- |
| View | View/getLoadBalancerInstanceDetail | View/getLoadBalancerInstanceList | LoadBalancer | LoadBalancer | Select servers to apply the Load Balancer |
| View | View/getLoadBalancerInstanceList | - | - | LoadBalancer | View the list of servers to apply the Load Balancer |
| View | View/getLoadBalancerMonitor |
- View/getLoadBalancerListenerList
- View/getLoadBalancerInstanceList
- View/getLoadBalancerInstanceDetail
| View | View/getSSLCertificateDetail | View/getSSLCertificateList | CertificateManager:Certificate | LoadBalancer | Select a certificate for HTTPS listener configuration |
| View | View/getSSLCertificateList | - | - | LoadBalancer | View the list of certificates for HTTPS listener configuration |
| View | View/downloadLoadBalancerList | - | LoadBalancer | LoadBalancer | Download Load Balancer information |
| View | View/getVPCList | - | - | VPC | View the list of VPCs for server creation |
| View | View/getVPCDetail | View/getVPCList | VPC:VPC | VPC | View VPC details |
| View | View/downloadTargetGroupList | - | TargetGroup | TargetGroup | Download Target Group information |
| View | View/getLoadBalancerListenerDetail | View/getLoadBalancerListenerList | Listener | Listener | Select a Load Balancer listener and view detailed information |
| View | View/getLoadBalancerListenerList |
- View/getLoadBalancerInstanceList
- View/getLoadBalancerInstanceDetail
| View | View/getLoadBalancerRuleDetail | View/getLoadBalancerInstanceList | Rule | Rule | View detailed information about Load Balancer routing rules |
| View | View/getLoadBalancerRuleList |
- View/getLoadBalancerListenerList
- View/getLoadBalancerInstanceDetail
- View/getLoadBalancerInstanceList
| View | View/getServerInstanceDetail | View/getServerInstanceList | VPCServer:Server | Server | View server details |
| View | View/getServerInstanceList | - | - | Server | View the list of server instances (VMs) |
| View | View/getSubnetDetail | View/getSubnetList | VPC:Subnet | Subnet | View Subnet details |
| View | View/getSubnetList | - | - | Subnet | View Subnet list |
| View | View/getTargetGroupDetail | View/getTargetGroupList | TargetGroup | TargetGroup | Select a Target Group and view detailed information |
| View | View/getTargetGroupList | View/getTargetGroupDetail | - | TargetGroup | Download Target Group list |
| View | View/getTargetGroupMonitor |
- View/getTargetGroupDetail
- View/getTargetGroupList
| View | View/getTargetList |
- View/getTargetGroupDetail
- View/getTargetGroupList
| Change | Change/changeLoadBalancerInstanceConfiguration |
- View/getSSLCertificateDetail
- Change/setLoadbalancerAccesslog
- View/getSSLCertificateList
- View/getLoadBalancerInstanceList
- View/getLoadBalancerInstanceDetail
| Change | Change/changeLoadBalancerListenerConfiguration |
- View/getSSLCertificateDetail
- View/getLoadBalancerListenerList
- View/getSSLCertificateList
- View/getLoadBalancerListenerDetail
| Change | Change/changeLoadBalancerRuleConfiguration |
- View/getTargetGroupDetail
- View/getLoadBalancerListenerList
- View/getTargetGroupList
- View/getLoadBalancerListenerDetail
- View/getLoadBalancerInstanceList
- View/getLoadBalancerInstanceDetail
- View/getLoadBalancerRuleList
| Change | Change/changeTargetGroupConfiguration |
- View/getTargetGroupDetail
- View/getTargetGroupList
| Change | Change/changeTargetGroupHealthCheckConfiguration |
- View/getTargetGroupDetail
- View/getTargetGroupList
| Change | Change/createLoadBalancerInstance |
- View/getSubnetList
- View/getSSLCertificateDetail
- View/getTargetGroupDetail
- View/getTargetGroupList
- View/getSubnetDetail
- View/getServerInstanceList
- View/getSSLCertificateList
- View/getServerInstanceDetail
- View/getLoadBalancerInstanceList
- View/getVPCDetail
- View/getVPCList
| Change | Change/createLoadBalancerListener |
- View/getSSLCertificateDetail
- View/getTargetGroupDetail
- View/getLoadBalancerListenerList
- View/getTargetGroupList
- View/getSSLCertificateList
- View/getLoadBalancerListenerDetail
| Change | Change/createLoadBalancerRule |
- View/getTargetGroupDetail
- View/getLoadBalancerListenerList
- View/getTargetGroupList
- View/getLoadBalancerInstanceList
- View/getLoadBalancerInstanceDetail
- View/getLoadBalancerRuleList
| Change | Change/createTargetGroup |
- View/getTargetGroupDetail
- View/getTargetGroupList
- View/getServerInstanceList
- View/getServerInstanceDetail
- View/getVPCDetail
- View/getVPCList
| Change | Change/deleteLoadBalancerInstance |
- View/getLoadBalancerInstanceList
- View/getLoadBalancerInstanceDetail
| Change | Change/deleteLoadBalancerListener |
- View/getLoadBalancerListenerList
- View/getLoadBalancerListenerDetail
| Change | Change/deleteLoadBalancerRule |
- View/getLoadBalancerListenerList
- View/getLoadBalancerInstanceList
- View/getLoadBalancerInstanceDetail
- View/getLoadBalancerRuleDetail
- View/getLoadBalancerRuleList
| Change | Change/deleteTargetGroup | View/getTargetGroupList | TargetGroup | TargetGroup | Delete Target Group |
| Change | Change/setLoadBalancerDescription |
- View/getLoadBalancerInstanceList
- View/getLoadBalancerInstanceDetail
| Change | Change/setLoadBalancerInstanceSubnet |
- View/getSubnetList
- View/getSubnetDetail
- View/getLoadBalancerInstanceList
- View/getLoadBalancerInstanceDetail
| Change | Change/setLoadbalancerAccesslog | - | LoadBalancer | LoadBalancer | Collect Load Balancer access logs and integrate with the CLA service |
| Change | Change/setTarget |
- View/getTargetGroupList
- View/getServerInstanceList
- View/getServerInstanceDetail
| Change | Change/setTargetGroupDescription | View/getTargetGroupList | TargetGroup | TargetGroup | Configure Target Group memo |
If you grant someone access to a specific action but not to the required related actions, they won't be able to complete their tasks. Sub Account automatically includes these related permissions to prevent this issue. However, if you manually uncheck these auto-selected related actions, the system assumes this was intentional and won't override your selection.