This topic uses an example policy to demonstrate how to authorize a RAM user to manage ECS security groups under an Alibaba Cloud account.

The following policy indicates that the authorized RAM user can manage ECS security groups under an Alibaba Cloud.

{
  "Version": "1",
  "Statement": [
    {
      "Action": "ecs:*SecurityGroup*",
      "Resource": "*",
      "Effect": "Allow"
    }
  ]
}