本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
AmazonInspector2FullAccess_v2
描述:提供 Amazon Inspector 的完整存取權,並存取其他相關服務,例如具有限制性組織存取權的組織。
AmazonInspector2FullAccess_v2 是 AWS 受管政策。
使用此政策
您可以AmazonInspector2FullAccess_v2連接到您的使用者、群組和角色。
政策詳細資訊
-
類型: AWS 受管政策
-
建立時間:2025 年 7 月 3 日 16:07 UTC
-
編輯時間:2025 年 7 月 3 日 16:07 UTC
-
ARN:
arn:aws:iam::aws:policy/AmazonInspector2FullAccess_v2
政策版本
政策版本: v1 (預設)
政策的預設版本是定義政策許可的版本。當具有 政策的使用者或角色提出存取 AWS 資源的請求時, 會 AWS 檢查政策的預設版本,以決定是否允許請求。
JSON 政策文件
{ "Version" : "2012-10-17", "Statement" : [ { "Sid" : "AllowFullAccessToInspectorApis", "Effect" : "Allow", "Action" : "inspector2:*", "Resource" : "*" }, { "Sid" : "AllowAccessToCodeGuruApis", "Effect" : "Allow", "Action" : [ "codeguru-security:BatchGetFindings", "codeguru-security:GetAccountConfiguration" ], "Resource" : "*" }, { "Sid" : "AllowAccessToCreateSlr", "Effect" : "Allow", "Action" : "iam:CreateServiceLinkedRole", "Resource" : "*", "Condition" : { "StringEquals" : { "iam:AWSServiceName" : [ "agentless.inspector2.amazonaws.com", "inspector2.amazonaws.com" ] } } }, { "Sid" : "AllowServicePrincipalBasedAccessToOrganizationApis", "Effect" : "Allow", "Action" : [ "organizations:EnableAWSServiceAccess", "organizations:RegisterDelegatedAdministrator", "organizations:ListDelegatedAdministrators" ], "Resource" : "*", "Condition" : { "StringEquals" : { "organizations:ServicePrincipal" : [ "inspector2.amazonaws.com", "agentless.inspector2.amazonaws.com" ] } } }, { "Sid" : "AllowOrganizationalBasedAccessToOrganizationApis", "Effect" : "Allow", "Action" : [ "organizations:DescribeOrganizationalUnit" ], "Resource" : "arn:*:organizations::*:ou/o-*/ou-*" }, { "Sid" : "AllowAccountsBasedAccessToOrganizationApis", "Effect" : "Allow", "Action" : [ "organizations:DescribeAccount" ], "Resource" : "arn:*:organizations::*:account/o-*/*" }, { "Sid" : "AllowAccessToOrganizationApis", "Effect" : "Allow", "Action" : [ "organizations:ListAWSServiceAccessForOrganization", "organizations:DescribeOrganization" ], "Resource" : "*" } ] }
進一步了解
