如果您想要为⼦账号授权其他的权限,可以通过⾃定义策略的⽅式实现。
本文以自定义提交作业策略为例。
策略⽰例
仅提交作业权限策略:
{ "Statement": [ { "Effect": "Allow", "Action": [ "emr_serverless:ListSchemaNames", "emr_serverless:EditorGetLog", "emr_serverless:EditorGetBatchQueryStatus", "emr_serverless:EditorListAllBatchQueries", "emr_serverless:EditorListAllHistoryRecords", "emr_serverless:EditorDeleteTab", "emr_serverless:EditorSaveQuery", "emr_serverless:EditorListAllTabs", "emr_serverless:ShowTablesNotCheckPrivilege", "emr_serverless:EditorExecuteQuery", "emr_serverless:EditorAnalyzeQuery", "emr_serverless:EditorGetBatchQueryStatus", "emr_serverless:EditorListBatchQueryData", "emr_serverless:EditorListAllQueuesExt", "emr_serverless:CheckJobStatus", "emr_serverless:ListImportJob", "emr_serverless:ListQueue", "emr_serverless:ListJob", "emr_serverless:MonitorScanData", "emr_serverless:MonitorStorage", "emr_serverless:ConsolePermission", "emr_serverless:ListRegion", "emr_serverless:ListSchema", "emr_serverless:ListResourceReferJobs", "emr_serverless:Query*", "emr_serverless:Get*", "emr_serverless:Fetch*", "emr_serverless:ListPath", "emr_serverless:ListAclEntriesV2", "emr_serverless:EditorListAllJobTabs", "emr_serverless:ListTagQueue", "emr_serverless:ListQueueComponent", "emr_serverless:ListJobInstances" ], "Resource": [ "*" ] } ] }
策略创建完成后,需要给⼦账号进⾏⾃定义策略的授权。