IoT Platform:AliyunServiceRoleForIoTRuleengineLindorm service-linked role

Description

IoT Platform allows you to forward data that is submitted by devices to a specified table of a Lindorm instance. To implement the feature, you must grant IoT Platform the permissions to access Lindorm.

IoT Platform supports automatic creation of service-linked roles. When you configure a data forwarding rule that is used to forward data to Lindorm, you can authorize IoT Platform to access Lindorm. After the authorization is complete, the AliyunServiceRoleForIoTRuleengineLindorm service-linked role is automatically created. For more information, see Forward data to Lindorm.

Role name:

AliyunServiceRoleForIoTRuleengineLindorm

Role policy:

AliyunServiceRolePolicyForIoTRuleengineLindorm

Policy document:

{
    "Version": "1",
    "Statement": [{
            "Action": [
                "lindorm:GetLindormInstanceList",
                "lindorm:GetLindormInstance",
                "lindorm:GetLindormInstanceEngineList",
                "lindorm:GetInstanceIpWhiteList",
                "lindorm:UpdateInstanceIpWhiteList"
            ],
            "Resource": "*",
            "Effect": "Allow"
        },
        {
            "Action": "ram:DeleteServiceLinkedRole",
            "Resource": "*",
            "Effect": "Allow",
            "Condition": {
                "StringEquals": {
                "ram:ServiceName": "ruleengine-lindorm.iot.aliyuncs.com"
                }
            }
        }
    ]
}

Delete the role

If you no longer use the AliyunServiceRoleForIoTRuleengineLindorm service-linked role, you can delete the role.

1. On the Data Destination tab of the Data Forwarding page, delete data destinations whose Operation is set to Store Data to ApsaraDB for Lindorm in sequence.

2. Delete the role. For more information, see Delete a service-linked role.