Resource Access Management：AliyunYundunWAFv3ReadOnlyAccess

AliyunYundunWAFv3ReadOnlyAccess is a service system policy that is managed by Alibaba Cloud. You can attach the AliyunYundunWAFv3ReadOnlyAccess policy to a Resource Access Management (RAM) identity, such as a RAM user, RAM user group, and RAM role. The AliyunYundunWAFv3ReadOnlyAccess policy: Provides read-only access to Web Application Firewall3.0 via Management Console.

Policy details

• Type: service system policy

• Creation time: 06:13:37 on February 14, 2023

• Update time: 06:43:16 on September 23, 2025

• Current version: v3

Policy content

{
  "Version": "1",
  "Statement": [
    {
      "Action": [
        "yundun-waf:Get*",
        "yundun-waf:Describe*",
        "yundun-waf:Query*",
        "yundun-waf:List*",
        "yundun-sas:DescribeServiceLinkedRoleStatus",
        "sasti:Get*",
        "sasti:Describe*",
        "sasti:Query*",
        "sasti:List*",
        "sasti:Grant*"
      ],
      "Resource": "*",
      "Effect": "Allow"
    }
  ]
}

References

• Policy elements

• Grant permissions to a RAM user

• Grant permissions to a RAM user group

• Grant permissions to a RAM role