tencent cloud

Cloud Access Management

DocumentationCloud Access ManagementCAM-Enabled RoleMiddlewareMessage Queue CKafka

Message Queue CKafka

Download
Focus Mode
Font Size
Last updated: 2026-06-22 09:57:49

Service roles and service-linked roles are predefined by Tencent Cloud services and, upon user authorization, the corresponding services can access and use resources by assuming these service-linked roles. This document provides detailed information on the use cases and associated authorization policies of these specific service-linked roles.

Product Role Name Role Types Role Entity
CKafka CKafka_QCSLinkedRoleInSslQuery Service-Related Roles sslcert.ckafka.cloud.tencent.com
CKafka cosCkafka_QCSRole Service Role ckafka.qcloud.com

CKafka_QCSLinkedRoleInSslQuery

Use Cases: The current role is related to the CKafka service, used to authorize Ckafka to query SSL resources
Authorization Polices

  • Policy Name: QcloudAccessForCKafkaLinkedRoleInSslQuery
  • Policy Information:
    {
  "version": "2.0",
  "statement": [
      {
          "effect": "allow",
          "action": [
              "ssl:DescribeCertificateDetail",
              "ssl:DescribeCertificates"
          ],
          "resource": "*"
      }
  ]
}

cosCkafka_QCSRole

Use Cases:
Authorization Polices

  • Policy Name: QcloudCOSAccessForCkafkaRole
  • Policy Information:
    {
  "version": "2.0",
  "statement": [
      {
          "action": [
              "cos:PutObject",
              "cos:GetObject",
              "cos:DeleteObject",
              "cos:ListParts",
              "cos:UploadPart"
          ],
          "resource": "*",
          "effect": "allow"
      }
  ]
}
Previous Topic: LLM Service TokenHubNext Topic: TDMQ for RabbitMQ

Help and Support

Was this page helpful?

Help us improve! Rate your documentation experience in 5 mins.

Feedback