AliyunServiceRoleForDataHubDWConnection is the service-linked role for DataHub-DataWorks Connection. This topic describes the application scenarios of the service-linked role and how to delete the service-linked role.
The service-linked role for DataHub-DataWorks Connection is a RAM role that is used to obtain the permissions to query and create DataWorks workspaces when DataHub needs to import data from databases in real time. For more information, see Service-linked roles.
Scenarios
If DataHub needs to import data from databases in real time, the service-linked role for DataHub-DataWorks Connection is required to query and create DataWorks workspaces.
Service-linked role for DataHub-DataWorks Connection
Role name: AliyunServiceRoleForDataHubDWConnection
Policy of the role: AliyunServiceRolePolicyForDataHubDWConnection
The following code describes the permissions of the service-linked role for DataHub-DataWorks Connection:
{
"Version": "1",
"Statement": [
{
"Action": [
"dataworks:QueryDataImportProcess",
"dataworks:QueryDataImportProcessStatus"
],
"Resource": "*",
"Effect": "Allow"
},
{
"Effect": "Allow",
"Action": "ram:DeleteServiceLinkedRole",
"Resource": "*",
"Condition": {
"StringEquals": {
"ram:ServiceName": "dwconnection.datahub.aliyuncs.com"
}
}
}
]
}Delete the service-linked role for DataHub-DataWorks Connection
For information about how to delete a service-linked role, see Delete a service-linked role.
Create the service-linked role for DataHub-DataWorks Connection as a RAM user
If you want to create the service-linked role for DataHub-DataWorks Connection as a RAM user, you must attach the CreateServiceLinkedRole policy to the RAM user. The following code describes the policy:
{
"Statement": [
{
"Action": "ram:CreateServiceLinkedRole",
"Resource": "*",
"Effect": "Allow",
"Condition": {
"StringEquals": {
"ram:ServiceName": [
"dwconnection.datahub.aliyuncs.com"
]
}
}
}
],
"Version": "1"
}