How do I set OSS access permissions for ack-onepilot components?
Updated at:
Copy as MD
By default, the Application Real-Time Monitoring Service (ARMS) probe access assistant (ack-onepilot) does not require additional Object Storage Service (OSS) access permissions.
Configure additional permissions only if your environment restricts OSS access — for example, if a bucket policy limits bucket access or a VPC policy blocks OSS endpoints. In those cases, grant ack-onepilot access to the required OSS resources before you deploy or redeploy the component.
Grant access to the required OSS bucket
Add the following ARN patterns to your access policy. Replace ${region} with your actual region ID.
acs:oss:*:*:arms-apm-${region}
acs:oss:*:*:arms-apm-${region}/*
For example, for the China (Beijing) region:
acs:oss:*:*:arms-apm-cn-beijing
acs:oss:*:*:arms-apm-cn-beijing/*
The first ARN grants access to the arms-apm-${region} bucket. The second grants access to all objects within that bucket.
References
Is this page helpful?