Alibaba Cloud DNS:Service-linked role for Alibaba Cloud DNS

Scenarios

The service-linked role for Alibaba Cloud DNS, AliyunServiceRoleForDNS, is a RAM role that allows Alibaba Cloud DNS to access other Alibaba Cloud services to perform specific tasks. For example, the DNS monitoring feature needs to access CloudMonitor resources. For more information about service-linked roles, see Service-linked roles.

Details of AliyunServiceRoleForDNS

• Role name: AliyunServiceRoleForDNS

• Policy name: AliyunServiceRolePolicyForDNS

• Permissions:

  {
  "Version": "1",
  "Statement": [
    {
      "Action": [
        "cms:QueryTaskConfig",
        "cms:DescribeISPAreaCity",
        "cms:CreateTask",
        "cms:ModifyTask",
        "cms:DeleteTasks",
        "cms:DescribeTasks",
        "cms:DescribeTaskDetail",
        "cms:CreateAlarm",
        "cms:DeleteAlarm",
        "cms:UpdateAlarm",
        "cms:ListAlarm",
        "cms:QueryAlarm",
        "cms:QueryMetricList",
        "cms:QueryMetricLast",
        "cms:QueryTaskMonitorData",
        "cms:QueryStaticsAvailability",
        "cms:QueryStaticsErrorRate",
        "cms:QueryStaticsResponseTime",
        "cms:QueryErrorDistribution"
      ],
      "Resource": "*",
      "Effect": "Allow"
    }
  ]
  }

Delete the service-linked role

If you delete the AliyunServiceRoleForDNS service-linked role, your DNS monitoring jobs may become unavailable. Proceed with caution. For more information, see Delete a service-linked role.