기계 번역으로 제공되는 번역입니다. 제공된 번역과 원본 영어의 내용이 상충하는 경우에는 영어 버전이 우선합니다.
DataSyncAPI 권한: 작업 및 리소스
AWS Identity and Access Management(IAM) 정책을 생성할 때, 수행할 권한을 부여할 수 있는 해당 작업, 권한 부여된AWS 리소스가 각각 나열되어 있습니다.AWS DataSync
일반적으로 정책에DataSync 권한을 추가하는 방법은 다음과 같습니다.
-
Action요소에 동작을 지정합니다. 값에는datasync:접두사와 API 작업 이름이 포함됩니다. 예:datasync:CreateTask. -
Resource요소의 작업과 관련된AWS 리소스를 지정합니다.
DataSync정책에서AWS 조건 키를 사용할 수도 있습니다. 전체 키는 IAM 사용 가능한 키를 참조하십시오.AWS
리소스 및 해당 Amazon 리소스 이름 (ARN) 형식은 섹션을 참조하십시오DataSync 리소스 및 작업.DataSync
DataSyncAPI 작업 및 해당 작업
- AddStorageSystem
-
작업:
datasync:AddStorageSystem리소스: 없음
작업:
-
kms:Decrypt -
iam:CreateServiceLinkedRole
리소스:
*작업:
secretsmanager:CreateSecret리소스:
arn:aws:secretsmanager:region:account-id:secret:datasync!* -
- CancelTaskExecution
-
작업:
datasync:CancelTaskExecution리소스:
arn:aws:datasync:region:account-id:task/task-id/execution/exec-id - CreateAgent
-
작업:
datasync:CreateAgent리소스: 없음
- CreateLocationEfs
-
작업:
datasync:CreateLocationEfs리소스: 없음
- CreateLocationFsxLustre
-
작업:
datasync:CreateLocationFsxLustre리소스: 없음
- CreateLocationFsxOntap
-
작업:
datasync:CreateLocationFsxOntap리소스: 없음
- CreateLocationFsxOpenZfs
-
작업:
datasync:CreateLocationFsxOpenZfs리소스: 없음
- CreateLocationFsxWindows
-
작업:
datasync:CreateLocationFsxWindows리소스: 없음
- CreateLocationHdfs
-
작업:
dataSync:CreateLocationHdfs리소스:
arn:aws:datasync:region:account-id:agent/agent-id - CreateLocationNfs
-
작업:
datasync:CreateLocationNfs리소스:
arn:aws:datasync:region:account-id:agent/agent-id - CreateLocationObjectStorage
-
작업:
dataSync:CreateLocationObjectStorage리소스:
arn:aws:datasync:region:account-id:agent/agent-id - CreateLocationS3
-
작업:
datasync:CreateLocationS3리소스:
arn:aws:datasync:(아웃포스트의 Amazon S3에만 해당)region:account-id:agent/agent-id - CreateLocationSmb
-
작업:
datasync:CreateLocationSmb리소스:
arn:aws:datasync:region:account-id:agent/agent-id - CreateTask
-
작업:
datasync:CreateTask리소스:
-
arn:aws:datasync:region:account-id:location/source-location-id -
arn:aws:datasync:region:account-id:location/destination-location-id
-
- DeleteAgent
-
작업:
datasync:DeleteAgent리소스:
arn:aws:datasync:region:account-id:agent/agent-id - DeleteLocation
-
작업:
datasync:DeleteLocation리소스:
arn:aws:datasync:region:account-id:location/location-id - DeleteTask
-
작업:
datasync:DeleteTask리소스:
arn:aws:datasync:region:account-id:task/task-id - DescribeAgent
-
작업:
datasync:DescribeAgent리소스:
arn:aws:datasync:region:account-id:agent/agent-id - DescribeDiscoveryJob
-
작업:
datasync:DescribeDiscoveryJob리소스:
arn:aws:datasync:region:account-id:system/storage-system-id/job/discovery-job-id - DescribeLocationEfs
-
작업:
datasync:DescribeLocationEfs리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeLocationFsxLustre
-
작업:
datasync:DescribeLocationFsxLustre리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeLocationFsxOntap
-
작업:
datasync:DescribeLocationFsxOntap리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeLocationFsxOpenZfs
-
작업:
datasync:DescribeLocationFsxOpenZfs리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeLocationFsxWindows
-
작업:
datasync:DescribeLocationFsxWindows리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeLocationHdfs
-
작업:
datasync:DescribeLocationHdfs리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeLocationNfs
-
작업:
datasync:DescribeLocationNfs리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeLocationObjectStorage
-
작업:
datasync:DescribeLocationObjectStorage리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeLocationS3
-
작업:
datasync:DescribeLocationS3리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeLocationSmb
-
작업:
datasync:DescribeLocationSmb리소스:
arn:aws:datasync:region:account-id:location/location-id - DescribeStorageSystem
-
작업:
datasync:DescribeStorageSystem리소스:
arn:aws:datasync:region:account-id:system/storage-system-id작업:
secretsmanager:DescribeSecret리소스:
arn:aws:secretsmanager:region:account-id:secret:datasync!* - DescribeStorageSystemResourceMetrics
-
작업:
datasync:DescribeStorageSystemResourceMetrics리소스:
arn:aws:datasync:region:account-id:system/storage-system-id/job/discovery-job-id - DescribeStorageSystemResources
-
작업:
datasync:DescribeStorageSystemResources리소스:
arn:aws:datasync:region:account-id:system/storage-system-id/job/discovery-job-id - DescribeTask
-
작업:
datasync:DescribeTask리소스:
arn:aws:datasync:region:account-id:task/task-id - DescribeTaskExecution
-
작업:
datasync:DescribeTaskExecution리소스:
arn:aws:datasync:region:account-id:task/task-id/execution/exec-id - GenerateRecommendations
-
작업:
datasync:GenerateRecommendations리소스:
arn:aws:datasync:region:account-id:system/storage-system-id/job/discovery-job-id - ListAgents
-
작업:
datasync:ListAgents리소스: 없음
- ListDiscoveryJobs
-
작업:
datasync:ListDiscoveryJobs리소스:
arn:aws:datasync:region:account-id:system/storage-system-id - ListLocations
-
작업:
datasync:ListLocations리소스: 없음
- ListTagsForResource
-
작업:
datasync:ListTagsForResource리소스:
-
arn:aws:datasync:region:account-id:agent/agent-id -
arn:aws:datasync:region:account-id:task/task-id -
arn:aws:datasync:region:account-id:location/location-id
-
- ListTaskExecutions
-
작업:
datasync:ListTaskExecutions리소스:
arn:aws:datasync:region:account-id:task/task-id - ListTasks
-
작업:
datasync:ListTasks리소스: 없음
- RemoveStorageSystem
-
작업:
datasync:RemoveStorageSystem리소스:
arn:aws:datasync:region:account-id:system/storage-system-id작업:
secretsmanager:DeleteSecret리소스:
arn:aws:secretsmanager:region:account-id:secret:datasync!* - StartDiscoveryJob
-
작업:
datasync:StartDiscoveryJob리소스:
arn:aws:datasync:region:account-id:system/storage-system-id - StopDiscoveryJob
-
작업:
datasync:StopDiscoveryJob리소스:
arn:aws:datasync:region:account-id:system/storage-system-id/job/discovery-job-id - StartTaskExecution
-
작업:
datasync:StartTaskExecution리소스:
arn:aws:datasync:region:account-id:task/task-id - TagResource
-
작업:
datasync:TagResource리소스:
-
arn:aws:datasync:region:account-id:agent/agent-id -
arn:aws:datasync:region:account-id:task/task-id -
arn:aws:datasync:region:account-id:location/location-id
-
- UntagResource
-
작업:
datasync:UntagResource리소스:
-
arn:aws:datasync:region:account-id:agent/agent-id -
arn:aws:datasync:region:account-id:task/task-id -
arn:aws:datasync:region:account-id:location/location-id
-
- UpdateAgent
-
작업:
datasync:UpdateAgent리소스:
arn:aws:datasync:region:account-id:agent/agent-id - UpdateDiscoveryJob
-
작업:
datasync:UpdateDiscoveryJob리소스:
arn:aws:datasync:region:account-id:system/storage-system-id/job/discovery-job-id - UpdateLocationHdfs
-
작업:
datasync:UpdateLocationHdfs리소스:
-
arn:aws:datasync:region:account-id:agent/agent-id -
arn:aws:datasync:region:account-id:location/location-id
-
- UpdateLocationNfs
-
작업:
datasync:UpdateLocationNfs리소스:
arn:aws:datasync:region:account-id:location/location-id - UpdateLocationObjectStorage
-
작업:
datasync:UpdateLocationObjectStorage리소스:
-
arn:aws:datasync:region:account-id:agent/agent-id -
arn:aws:datasync:region:account-id:location/location-id
-
- UpdateLocationSmb
-
작업:
datasync:UpdateLocationSmb리소스:
-
arn:aws:datasync:region:account-id:agent/agent-id -
arn:aws:datasync:region:account-id:location/location-id
-
- UpdateStorageSystem
-
작업:
datasync:UpdateStorageSystem리소스:
-
arn:aws:datasync:region:account-id:agent/agent-id -
arn:aws:datasync:region:account-id:system/storage-system-id
-
- UpdateTask
-
작업:
datasync:UpdateTask리소스:
arn:aws:datasync:region:account-id:task/task-id - UpdateTaskExecution
-
작업:
datasync:UpdateTaskExecution리소스:
arn:aws:datasync:region:account-id:task/task-id/execution/exec-id
