# 角色和权限参考 点击每个角色,查看角色权限。 ## 客户资源层级[​](#客户资源层级 "Direct link to 客户资源层级") ### 公司管理员[​](#公司管理员 "Direct link to 公司管理员") 管理员角色允许用户执行系统中可用的任何操作。 | Role Permission Value(s) | Permission Description | | ------------------------------------ | --------------------------------------------------------------------------------------------------------- | | billing.billingaccount.assign | Assign and Manage Billing Account associations in the resource hierarchy | | billing.billingaccount.assign | Assign and Manage Billing Account associations in the resource hierarchy | | billing.billingaccount.create | Create Billing Accounts and associations in the resource hierarchy | | billing.billingaccount.delete | Delete billing account ownership from an organization in the resource hierarchy | | billing.billingaccount.move | Move billing accounts between organizations in the resource hierarchy | | billing.billingaccount.read | View Billing Accounts in the resource hierarchy | | billing.billingaccount.unlink | Unlink Billing Account associations in the resource hierarchy | | fabric.fabriccloudrouter.create | Create Fabric Cloud Router | | fabric.fabriccloudrouter.delete | Delete Fabric Cloud Router | | fabric.fabriccloudrouter.read | Get Fabric Cloud Router | | fabric.fabriccloudrouter.update | Update Fabric Cloud Router | | fabric.ipblock.create | Create IP Block in the resource hierarchy | | fabric.ipblock.delete | Delete IP Block from resource hierarchy | | fabric.ipblock.read | Read IP Block from resource hierarchy | | fabric.ipblock.update | Update IP Block in the resource hierarchy | | fabric.l2connection.approve | Approve or Reject Connection | | fabric.l2connection.create | Create Connection | | fabric.l2connection.delete | Delete Connection | | fabric.l2connection.read | Get Connection | | fabric.l2connection.update | Update Connection | | fabric.l3connection.approve | Approve or Reject L3 Connection | | fabric.l3connection.create | Create L3 Connection | | fabric.l3connection.delete | Delete L3 Connection | | fabric.l3connection.read | Get L3 Connection | | fabric.l3connection.update | Update L3 Connection | | fabric.l3serviceprofile.create | Create L3 Service profile | | fabric.l3serviceprofile.delete | Delete L3 Service profile | | fabric.l3serviceprofile.read | Get L3 Service profile | | fabric.l3serviceprofile.update | Update L3 Service profile | | fabric.network.create | Create Network | | fabric.network.delete | Delete Network | | fabric.network.read | Get Network | | fabric.network.update | Update Network | | fabric.port.assign | Assign a Port | | fabric.port.delete | Delete a Port | | fabric.port.placeorder | Place VC Order on Port | | fabric.port.read | Read Port | | fabric.port.unassign | Unassign a Port | | fabric.routefilter.create | Create Route Filter | | fabric.routefilter.delete | Delete Route Filter | | fabric.routefilter.read | Get Route Filter | | fabric.routefilter.update | Update Route Filter | | fabric.routeaggregation.create | Create Route Aggregation Policy | | fabric.routeaggregation.delete | Delete Route Aggregation Policy | | fabric.routeaggregation.read | Get Route Aggregation Policy | | fabric.routeaggregation.update | Update Route Aggregation Policy | | fabric.serviceprofile.create | Create Service profile | | fabric.serviceprofile.delete | Delete Service profile | | fabric.serviceprofile.read | Get Service profile | | fabric.serviceprofile.update | Update Service profile | | fabric.servicetoken.create | Create Service Token | | fabric.servicetoken.delete | Delete Service Token | | fabric.servicetoken.read | Get Service Token | | fabric.servicetoken.update | Update Service Token | | iam.customrole.assign | Assign custom roles in the resource hierarchy | | iam.customrole.create | Create custom roles in the resource hierarchy | | iam.customrole.delete | Delete custom roles in the resource hierarchy | | iam.customrole.read | View the custom roles in the resource hierarchy | | iam.customrole.unassign | Unassign custom roles in the resource hierarchy | | iam.customrole.update | Update custom roles in the resource hierarchy | | iam.role.administrate | Permission meant strictly for Primary Admin so that he can perform special operations related with roles. | | iam.role.assign | Assign roles in the resource hierarchy | | iam.role.create | Create custom roles in the resource hierarchy | | iam.role.delete | Delete custom roles in the resource hierarchy | | iam.role.read | Read roles in the resource hierarchy | | iam.role.unassign | Unassign roles in the resource hierarchy | | iam.role.update | Update custom roles in the resource hierarchy | | iam.systemrole.assign | Assign Roles in the resource hierarchy | | iam.systemrole.unassign | Reassign and Unassign Roles in the resource hierarchy | | iam.user.create | Create a new user in an organization | | identity.orgsecuritypolicy.read | View organization security policies | | identity.orgsecuritypolicy.update | Modify organization security policies | | internetAccess.service.create | Create EIA Service | | internetAccess.service.delete | Delete EIA Service | | internetAccess.service.modify | Modify EIA Service | | internetAccess.service.read | Read EIA Service | | networkedge.acl.create | Create Network Edge ACL Templates | | networkedge.acl.modify | Modify Network Edge ACL Templates | | networkedge.acl.view | View Network Edge ACL Templates | | networkedge.acltemplate.create | Create Network Edge ACL Templates | | networkedge.acltemplate.delete | Delete Network Edge ACL Templates | | networkedge.acltemplate.modify | Modify Network Edge ACL Templates | | networkedge.acltemplate.view | View Network Edge ACL Templates | | networkedge.bgp.create | Create BGP Sessions | | networkedge.bgp.delete | Delete BGP Sessions | | networkedge.bgp.modify | Modify BGP Sessions | | networkedge.bgp.view | View BGP Sessions | | networkedge.devicelinking.create | Permission to create a Device Linking Group. | | networkedge.devicelinking.delete | Permission to delete a Device Linking Group. | | networkedge.devicelinking.modify | Permission to modify a Device Linking Group. | | networkedge.devicelinking.view | Permission to view a Device Linking Group. | | networkedge.internetbandwidth.modify | Modify Internet Bandwidth ACL Templates | | networkedge.internetbandwidth.view | View Internet Bandwidth ACL Templates | | networkedge.l2connection.create | Create Level 2 (L2) connections | | networkedge.l2connection.delete | Delete Level 2 (L2) connections | | networkedge.l2connection.modify | Modify Level 2 (L2) connections | | networkedge.l2connection.view | View Level 2 (L2) connections | | networkedge.publickey.create | Create Network Edge Public Key | | networkedge.publickey.delete | Delete Network Edge Public Key | | networkedge.publickey.modify | Modify Network Edge Public Key | | networkedge.publickey.view | View Network Edge Public Key | | networkedge.solutionbuilder.create | Permission to create a Solution Builder. | | networkedge.solutionbuilder.delete | Permission to delete a Solution Builder. | | networkedge.solutionbuilder.modify | Permission to modify a Solution Builder. | | networkedge.solutionbuilder.view | Permission to view a Solution Builder. | | networkedge.sshuser.create | Create Network Edge SSH Services | | networkedge.sshuser.modify | Modify Network Edge SSH services | | networkedge.sshuser.view | View Network Edge SSH Services | | networkedge.virtualdevice.create | Create Network Edge Virtual Devices | | networkedge.virtualdevice.delete | Delete Network Edge Virtual Devices | | networkedge.virtualdevice.modify | Modify Network Edge Virtual Devices | | networkedge.virtualdevice.view | View Network Edge Virtual Devices | | networkedge.vpn.create | Create Network Edge VPN Connections | | networkedge.vpn.delete | Delete Network Edge VPN Connections | | networkedge.vpn.modify | Modify Network Edge VPN Connections | | networkedge.vpn.view | View Network Edge VPN Connections | | resourcemanager.org.associate | Associate Orgs with entities like Billing Accounts in the resource hierarchy | | resourcemanager.org.create | Create Orgs in the resource hierarchy | | resourcemanager.org.delete | Delete Orgs in the resource hierarchy | | resourcemanager.org.disassociate | Disassociate Orgs with entities like Billing Accounts in the resource hierarchy | | resourcemanager.org.endcust.create | Create End-customer organizations | | resourcemanager.org.endcust.delete | Delete End-customer organizations | | resourcemanager.org.endcust.list | List End-customer organizations | | resourcemanager.org.endcust.move | Move End-customer organizations | | resourcemanager.org.endcust.read | View End-customer organizations | | resourcemanager.org.endcust.update | Update End-customer organizations | | resourcemanager.org.merge | Merge organizations in the resource hierarchy | | resourcemanager.org.org.add | Add existing org to an organization | | resourcemanager.org.org.remove | Remove existing org from an organization | | resourcemanager.org.partner.create | Create Partner Orgs | | resourcemanager.org.partner.delete | Delete Partner Orgs | | resourcemanager.org.partner.read | View Partner Orgs | | resourcemanager.org.partner.update | Update Partner Orgs | | resourcemanager.org.project.add | Add existing project to an organization | | resourcemanager.org.project.remove | Remove existing project from an organization | | resourcemanager.org.read | View Orgs in the resource hierarchy | | resourcemanager.org.update | Update Orgs in the resource hierarchy | | resourcemanager.project.associate | Associate Projects with Billing Accounts in the resource hierarchy | | resourcemanager.project.create | Create Projects in the resource hierarchy | | resourcemanager.project.delete | Delete Projects in the resource hierarchy | | resourcemanager.project.disassociate | Disassociate Projects from Billing Accounts in the resource hierarchy | | resourcemanager.project.read | View Projects in the resource hierarchy | | resourcemanager.project.resource.add | Add existing resource to a project | ### IAM管理[​](#iam管理 "Direct link to IAM管理") 管理用户、自定义角色以及在资源层次结构中向用户分配角色 | Role Permission Value(s) | Permission Description | | --------------------------------- | ------------------------------------------------------------ | | fabric.port.read | View Fabric port sessions | | iam.role.assign | Assign Roles in the resource hierarchy | | iam.role.unassign | Reassign and Unassign Roles in the resource hierarchy | | iam.role.assign | Assign Roles in the resource hierarchy | | iam.role.create | Create Roles in the resource hierarchy | | iam.role.delete | Delete Roles in the resource hierarchy | | iam.role.update | Update Roles in the resource hierarchy | | iam.customrole.assign | Assign Custom Roles in the resource hierarchy | | iam.customrole.unassign | Reassign and Unassign Custom Roles in the resource hierarchy | | iam.customrole.assign | Assign Custom Roles in the resource hierarchy | | iam.customrole.create | Create Custom Roles in the resource hierarchy | | iam.customrole.delete | Delete Custom Roles in the resource hierarchy | | iam.customrole.update | Update Custom Roles in the resource hierarchy | | iam.systemrole.assign | Assign system roles in the resource hierarchy | | iam.systemrole.unassign | Reassign and unassign system roles in the resource hierarchy | | iam.user.create | Create a new user in an organization | | identity.orgsecuritypolicy.read | View organization security policies | | identity.orgsecuritypolicy.update | Modify organization security policies | ### 机关管理[​](#机关管理 "Direct link to 机关管理") 在资源层次结构中创建和管理组织。 | Role Permission Value(s) | Permission Description | | ---------------------------------- | ---------------------------------------------------------------------------------- | | resourcemanager.org.create | Create Organizations in the resource hierarchy | | resourcemanager.org.read | View Organizations in the resource hierarchy | | resourcemanager.org.update | Update Organizations in the resource hierarchy | | resourcemanager.org.delete | Delete Organizations in the resource hierarchy | | resourcemanager.org.associate | Associate Organizations with Billing Account entities in the resource hierarchy | | resourcemanager.org.disassociate | Disassociate Organizations with Billing Account entities in the resource hierarchy | | billing.billingaccount.read | View Billing Accounts in the resource hierarchy | | resourcemanager.org.project.remove | Remove existing project from an organization | | resourcemanager.org.org.remove | Remove existing org from an organization | | resourcemanager.org.org.add | Add existing org to an organization | | resourcemanager.org.project.add | Add existing project to an organization | ### Org Viewer[​](#org-viewer "Direct link to Org Viewer") 观点 组织和组织资源。 | Role Permission Value(s) | Permission Description | | ------------------------ | -------------------------------------------- | | resourcemanager.org.read | View Organizations in the resource hierarchy | ### 项目管理[​](#项目管理 "Direct link to 项目管理") 创建和管理库存和项目。 | Role Permission Value(s) | Permission Description | | --------------------------------------- | --------------------------------------------------------------------- | | resourcemanager.project.create | Create Projects in the resource hierarchy | | resourcemanager.project.read | View Projects in the resource hierarchy | | resourcemanager.project.delete | Delete Projects in the resource hierarchy | | resourcemanager.project.update | Update Projects in the resource hierarchy | | billing.billingaccount.read | View Billing Accounts in the resource hierarchy | | resourcemanager.project.associate | Associate Projects with Billing Accounts in the resource hierarchy | | resourcemanager.project.disassociate | Disassociate Projects from Billing Accounts in the resource hierarchy | | resourcemanager.project.resource.remove | Remove existing resource from a project | | resourcemanager.project.resource.add | Add existing resource to a project | ### 项目浏览器[​](#项目浏览器 "Direct link to 项目浏览器") 查看项目和项目资源。 | Role Permission Value(s) | Permission Description | | ---------------------------- | --------------------------------------- | | resourcemanager.project.read | View Projects in the resource hierarchy | ### Finance Admin[​](#finance-admin "Direct link to Finance Admin") 管理资源层次结构中的计费账户关联。 | Role Permission Value(s) | Permission Description | | ------------------------------- | ------------------------------------------------------------------------ | | resourcemanager.project.read | View Projects in the resource hierarchy | | billing.billingaccount.read | View Billing Accounts in the resource hierarchy | | billing.billingaccount.create | Create Billing Accounts and associations in the resource hierarchy | | billing.billingaccount.assign | Assign and Manage Billing Account associations in the resource hierarchy | | billing.billingaccount.unassign | Unassign Billing Account associations in the resource hierarchy | | billing.billingaccount.unlink | Unlink Billing Account associations in the resource hierarchy | | billing.billingaccount.view | View Billing Account associations in the resource hierarchy | | organizations.orgaccount.view | View Organization Account associations in the resource hierarchy | | projects.projectaccount.view | View Project Account associations in the resource hierarchy | | resourcemanager.org.read | View Organizations in the resource hierarchy | ### 合作伙伴管理[​](#合作伙伴管理 "Direct link to 合作伙伴管理") 管理合作伙伴组织。 | Role Permission Value(s) | Permission Description | | ---------------------------------- | --------------------------------------------- | | resourcemanager.org.subcust.delete | Delete Sub-account level Organizations | | resourcemanager.org.subcust.read | View Sub-account level Organizations | | resourcemanager.org.partner.create | Create Partner Organizations | | resourcemanager.org.partner.update | Update Partner Organizations | | resourcemanager.org.partner.delete | Delete Partner Organizations | | resourcemanager.org.subcust.update | Update Sub-account level Organizations | | resourcemanager.org.subcust.create | Create Sub-account level Organizations | | resourcemanager.org.partner.read | View Partner Organizations | | resourcemanager.org.subcust.list | List and View Sub-account level Organizations | | resourcemanager.org.subcust.move | Manage Sub-account level Organizations | ### 合作伙伴浏览器[​](#合作伙伴浏览器 "Direct link to 合作伙伴浏览器") 查看合作伙伴组织。 | Role Permission Value(s) | Permission Description | | -------------------------------- | ------------------------------------ | | resourcemanager.org.subcust.read | View Sub-account level Organizations | | resourcemanager.org.partner.read | View Partner Organizations | ### 终端客户管理[​](#终端客户管理 "Direct link to 终端客户管理") 管理次级客户组织。 | Role Permission Value(s) | Permission Description | | ---------------------------------- | ---------------------------------------- | | resourcemanager.org.endcust.move | Move End customer organizations | | resourcemanager.org.endcust.delete | Delete End customer organizations | | resourcemanager.org.endcust.list | List and View End customer organizations | | resourcemanager.org.endcust.create | Create End customer organizations | | resourcemanager.org.endcust.update | Update End customer organizations | | resourcemanager.org.endcust.read | View End customer organizations | ### 终端客户浏览器[​](#终端客户浏览器 "Direct link to 终端客户浏览器") 查看子客户组织。 | Role Permission Value(s) | Permission Description | | -------------------------------- | ------------------------------- | | resourcemanager.org.endcust.read | View End customer organizations | ### 公司介绍 管理[​](#公司介绍-管理 "Direct link to 公司介绍 管理") 更新公司简介。 | Role Permission Value(s) | Permission Description | | ------------------------------- | --------------------------------------- | | discovery.companyprofile.read | Get Company Profile | | discovery.companyprofile.update | Update Company Profile | | resourcemanager.project.read | View Projects in the Resource Hierarchy | ## Network Edge[​](#network-edge "Direct link to Network Edge") ### 网络边缘设备管理器[​](#网络边缘设备管理器 "Direct link to 网络边缘设备管理器") 管理网络边缘设备。 | Role Permission Value(s) | Permission Description | | ------------------------------------ | ------------------------------------------- | | resourcemanager.project.read | View Projects in the Resource Hierarchy | | networkedge.virtualdevice.create | Create Network Edge Virtual Devices | | networkedge.virtualdevice.view | View Network Edge Virtual Devices | | networkedge.virtualdevice.modify | Modify Network Edge Virtual Devices | | networkedge.virtualdevice.delete | Delete Network Edge Virtual Devices | | networkedge.acl.create | Create Network Edge ACL Templates | | networkedge.acl.view | View Network Edge Access Control List (ACL) | | networkedge.acl.modify | Modify Network Edge ACL Templates | | networkedge.sshuser.create | Create Network Edge SSH Services | | networkedge.sshuser.modify | Modify Network Edge SSH Services | | networkedge.sshuser.view | View Network Edge SSH Services | | networkedge.vpn.create | Create Network Edge VPN Connections | | networkedge.vpn.view | View Network Edge VPN Connections | | networkedge.vpn.modify | Modify Network Edge VPN Connections | | networkedge.vpn.delete | Delete Network Edge VPN Connections | | networkedge.internetbandwidth.view | View Internet Bandwidth ACL Templates | | networkedge.internetbandwidth.modify | Modify Internet Bandwidth ACL Templates | | networkedge.acltemplate.view | View Network Edge ACL Templates | | networkedge.acltemplate.create | Create Network Edge ACL Templates | | networkedge.acltemplate.modify | Modify Network Edge ACL Templates | | networkedge.acltemplate.delete | Delete Network Edge ACL Templates | | networkedge.publickey.create | Create Network Edge Public Key | | networkedge.publickey.view | View Network Edge Public Key | | networkedge.publickey.delete | Delete Network Edge Public Key | | networkedge.publickey.modify | Modify Network Edge Public Key | | networkedge.l2connection.view | View Layer 2 (L2) Connections | | networkedge.bgp.view | View BGP Sessions | | networkedge.devicelinking.create | Create a Device Linking Group | | networkedge.devicelinking.delete | Delete a Device Linking Group | | networkedge.devicelinking.modify | Edit a Device Linking Group | | networkedge.devicelinking.view | View a Device Linking Group | | networkedge.solutionbuilder.create | Create a Solution Builder | | networkedge.solutionbuilder.delete | Delete a Solution Builder | | networkedge.solutionbuilder.modify | Edit a Solution Builder | | networkedge.solutionbuilder.view | View a Solution Builder | ### 网络边缘连接经理[​](#网络边缘连接经理 "Direct link to 网络边缘连接经理") 管理网络边缘连接。 | Role Permission Value(s) | Permission Description | | ---------------------------------- | -------------------------------------------------- | | resourcemanager.project.read | View Projects in the resource hierarchy | | networkedge.l2connection.create | Create Layer 2 (L2) Connections | | networkedge.l2connection.view | View Layer 2 (L2) Connections | | networkedge.l2connection.modify | Modify Layer 2 (L2) Connections | | networkedge.l2connection.delete | Delete Layer 2 (L2) Connections | | networkedge.bgp.create | Create BGP Sessions | | networkedge.bgp.view | View BGP Sessions | | networkedge.bgp.modify | Modify BGP Sessions | | networkedge.bgp.delete | Delete BGP Sessions | | networkedge.virtualdevice.view | View Network Edge Virtual Devices | | networkedge.vpn.view | View Network Edge VPN Connections | | networkedge.sshuser.view | View Network Edge SSH Services | | networkedge.acl.view | View Network Edge ACL Templates | | networkedge.acltemplate.view | View Network Edge ACL Templates | | networkedge.publickey.view | View Network Edge Public Key | | networkedge.internetbandwidth.view | View Network Edge Internet Bandwidth ACL Templates | | fabric.serviceprofile.read | Read Fabric Layer 2 (L2) Service Profiles | | internetAccess.service.create | Create Equinix Internet Access service instances | | internetAccess.service.read | View Equinix Internet Access service instances | | internetAccess.service.modify | Edit Equinix Internet Access service instances | | internetAccess.service.delete | Delete Equinix Internet Access service instances | ### 网络边缘浏览器[​](#网络边缘浏览器 "Direct link to 网络边缘浏览器") 查看网络边缘项目和资源。 | Role Permission Value(s) | Permission Description | | ---------------------------------- | ---------------------------------------------- | | resourcemanager.project.read | View Projects in the resource hierarchy | | networkedge.l2connection.view | View Layer 2 (L2) Connections | | networkedge.bgp.view | View BGP Sessions | | networkedge.devicelinking.view | View a Device Linking Group | | networkedge.virtualdevice.view | View Network Edge Virtual Devices | | networkedge.vpn.view | View Network Edge VPN Connections | | networkedge.sshuser.view | View Network Edge SSH Services | | networkedge.acl.view | View Network Edge ACL Templates | | networkedge.acltemplate.view | View Network Edge ACL Templates | | networkedge.publickey.view | View Network Edge Public Key | | networkedge.internetbandwidth.view | View Internet Bandwidth ACL Templates | | internetAccess.service.read | View Equinix Internet Access service instances | | networkedge.solutionbuilder.create | Create a Solution Builder | | networkedge.solutionbuilder.delete | Delete a Solution Builder | | networkedge.solutionbuilder.modify | Edit a Solution Builder | | networkedge.solutionbuilder.view | View a Solution Builder | ## 布料[​](#布料 "Direct link to 布料") ### Fabric Manager[​](#fabric-manager "Direct link to Fabric Manager") 管理组织的端口、连接、服务令牌和 EIA。 | Role Permission Value(s) | Permission Description | | ----------------------------- | ------------------------------------------------ | | fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections | | fabric.l2connection.read | View Fabric Layer 2 (L2) Connections | | fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections | | fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections | | fabric.l3connection.create | Create Fabric Layer 3 (L3) Connections | | fabric.l3connection.read | View Fabric Layer 3 (L3) Connections | | fabric.l3connection.delete | Delete Fabric Layer 3 (L3) Connections | | fabric.l3connection.update | Update Fabric Layer 3 (L3) Connections | | fabric.ipblock.create | Create Fabric IP Blocks | | fabric.ipblock.read | View Fabric IP Blocks | | fabric.ipblock.delete | Delete Fabric IP Blocks | | fabric.ipblock.update | Update Fabric IP Blocks | | fabric.port.placeorder | Create Fabric Port Orders | | fabric.port.read | View Port Sessions | | fabric.port.placeorder | Place orders for Fabric Port | | fabric.servicetoken.create | Create Fabric Service Tokens | | fabric.servicetoken.read | View Fabric Service Tokens | | fabric.servicetoken.delete | Delete Fabric Service Tokens | | fabric.servicetoken.update | Update Fabric Service Tokens | | fabric.network.create | Create Fabric Network | | fabric.network.read | Get Fabric Network | | fabric.network.update | Update Fabric Network | | fabric.network.delete | Delete Fabric Network | | resourcemanager.project.read | View Projects in the resource hierarchy | | billing.billingaccount.read | View Billing Account | | internetAccess.service.create | Create Equinix Internet Access service instances | | internetAccess.service.read | View Equinix Internet Access service instances | | internetAccess.service.modify | Edit Equinix Internet Access service instances | | internetAccess.service.delete | Delete Equinix Internet Access service instances | ### 织物浏览器[​](#织物浏览器 "Direct link to 织物浏览器") 查看服务配置文件、端口、连接、服务令牌和 EIA。 | Role Permission Value(s) | Permission Description | | ---------------------------- | ---------------------------------------------- | | fabric.l2connection.read | View Fabric Layer 2 (L2) Connections | | resourcemanager.project.read | View Projects in the resource hierarchy | | fabric.l3connection.read | View Fabric Layer 3 (L3) Connections | | fabric.serviceprofile.read | View Fabric Layer 2 (L2) Service Profiles | | fabric.l3serviceprofile.read | View Fabric Layer 3 (L3) Service Profiles | | fabric.network.read | View Fabric Network | | fabric.servicetoken.read | View Fabric Service Tokens | | fabric.port.read | View Fabric Ports | | fabric.ipblock.read | View Fabric IP Blocks | | internetAccess.service.read | View Equinix Internet Access service instances | ### 织物服务提供者[​](#织物服务提供者 "Direct link to 织物服务提供者") 管理服务配置文件、端口、连接、服务令牌和 EIA。 | Role Permission Value(s) | Permission Description | | ------------------------------- | ------------------------------------------------------------ | | fabric.l2connection.approve | Approve Fabric Layer 2 (L2) Connections | | fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections | | fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections | | fabric.l2connection.read | View Fabric Layer 2 (L2) Connections | | fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections | | fabric.l3connection.approve | Approve Fabric Layer 3 (L3) Connections | | fabric.l3connection.create | Create Fabric Layer 3 (L3) Connections | | fabric.l3connection.delete | Delete Fabric Layer 3 (L3) Connections | | fabric.l3connection.read | View Fabric Layer 3 (L3) Connections | | fabric.l3connection.update | Update Fabric Layer 3 (L3) Connections | | fabric.l3serviceprofile.create | Create Fabric Layer 3 (L3) Service Profiles | | fabric.l3serviceprofile.read | View Fabric Layer 3 (L3) Service Profiles | | fabric.l3serviceprofile.update | Update Fabric Layer 3 (L3) Service Profiles | | fabric.l3serviceprofile.delete | Delete Fabric Layer 3 (L3) Service Profiles | | fabric.servicetoken.create | Create Fabric Service Tokens | | fabric.servicetoken.read | View Fabric Service Tokens | | fabric.servicetoken.delete | Delete Fabric Service Tokens | | fabric.servicetoken.update | Update Fabric Service Tokens | | fabric.port.placeorder | Create Fabric Port Orders | | fabric.port.read | View Fabric Ports | | fabric.serviceprofile.create | Create Fabric Layer 2 (L2) and Network Edge Service Profiles | | fabric.serviceprofile.delete | Delete Fabric Layer 2 (L2) and Network Edge Service Profiles | | fabric.serviceprofile.read | Read Fabric Layer 2 (L2) and Network Edge Service Profiles | | fabric.serviceprofile.update | Update Fabric Layer 2 (L2) and Network Edge Service Profiles | | resourcemanager.project.read | View Projects in the resource hierarchy | | billing.billingaccount.read | View Billing Account | | fabric.network.create | Create Fabric Network | | fabric.network.read | Get Fabric Network | | fabric.network.update | Update Fabric Network | | fabric.network.delete | Delete Fabric Network | | fabric.ipblock.create | Create Fabric IP Blocks | | fabric.ipblock.read | View Fabric IP Blocks | | fabric.ipblock.delete | Delete Fabric IP Blocks | | fabric.ipblock.update | Update Fabric IP Blocks | | fabric.fabriccloudrouter.delete | Delete Fabric Cloud Router | | fabric.fabriccloudrouter.update | Update Fabric Cloud Router | | fabric.fabriccloudrouter.read | Get Fabric Cloud Router | | fabric.fabriccloudrouter.create | Create Fabric Cloud Router | | fabric.routefilter.create | Create Route Filter | | fabric.routefilter.read | Get Route Filter | | fabric.routefilter.update | Update Route Filter | | fabric.routefilter.delete | Delete Route Filter | | fabric.routeaggregation.create | Create Route Aggregation Policy | | fabric.routeaggregation.read | Get Route Aggregation Policy | | fabric.routeaggregation.update | Update Route Aggregation Policy | | fabric.routeaggregation.delete | Delete Route Aggregation Policy | | internetAccess.service.create | Create Equinix Internet Access service instances | | internetAccess.service.read | View Equinix Internet Access service instances | | internetAccess.service.modify | Edit Equinix Internet Access service instances | | internetAccess.service.delete | Delete Equinix Internet Access service instances | ### 织物合作伙伴资源经理[​](#织物合作伙伴资源经理 "Direct link to 织物合作伙伴资源经理") 管理织物合作伙伴项目和资源。 | Role Permission Value(s) | Permission Description | | ---------------------------- | --------------------------------------- | | fabric.port.read | View Port Sessions | | fabric.port.placeorder | Create Fabric Port Orders | | fabric.port.assign | Assign Fabric Port | | fabric.port.unassign | Unassign Fabric Port | | resourcemanager.project.read | View Projects in the resource hierarchy | ### 最终客户面料经理[​](#最终客户面料经理 "Direct link to 最终客户面料经理") 最终客户 - 管理连接、服务令牌和 EIA。 | Role Permission Value(s) | Permission Description | | ----------------------------- | ------------------------------------------------ | | fabric.port.read | View Port Sessions | | fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections | | fabric.l2connection.read | View Fabric Layer 2 (L2) Connections | | fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections | | fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections | | fabric.l3connection.create | Create Fabric Layer 3 (L3) Connections | | fabric.l3connection.read | View Fabric Layer 3 (L3) Connections | | fabric.l3connection.update | Update Fabric Layer 3 (L3) Connections | | fabric.l3connection.delete | Delete Fabric Layer 3 (L3) Connections | | fabric.servicetoken.create | Create Fabric Service Tokens | | fabric.servicetoken.read | View Fabric Service Tokens | | fabric.servicetoken.update | Update Fabric Service Tokens | | fabric.servicetoken.delete | Delete Fabric Service Tokens | | resourcemanager.project.read | View Projects in the resource hierarchy | | fabric.network.create | Create Fabric Network | | fabric.network.read | Get Fabric Network | | fabric.network.update | Update Fabric Network | | fabric.network.delete | Delete Fabric Network | | internetAccess.service.create | Create Equinix Internet Access service instances | | internetAccess.service.read | View Equinix Internet Access service instances | | internetAccess.service.modify | Edit Equinix Internet Access service instances | | internetAccess.service.delete | Delete Equinix Internet Access service instances | ### 最终客户面料查看器[​](#最终客户面料查看器 "Direct link to 最终客户面料查看器") 最终用户 - 视口、连接、服务令牌和 EIA。 | Role Permission Value(s) | Permission Description | | ---------------------------- | ---------------------------------------------------------- | | fabric.port.read | View Port Sessions | | fabric.l2connection.read | View Fabric Layer 2 (L2) Connections | | fabric.l3connection.read | View Fabric Layer 3 (L3) Connections | | fabric.serviceprofile.read | Read Fabric Layer 2 (L2) and Network Edge Service Profiles | | fabric.l3serviceprofile.read | View Fabric Layer 3 (L3) Service Profiles | | fabric.servicetoken.read | View Fabric Service Tokens | | resourcemanager.project.read | View Projects in the resource hierarchy | | fabric.network.read | Get Fabric Network | | internetAccess.service.read | View Equinix Internet Access service instances | ### Fabric Connection Manager[​](#fabric-connection-manager "Direct link to Fabric Connection Manager") 管理连接、服务令牌和 EIA。 | Role Permission Value(s) | Permission Description | | ----------------------------- | ------------------------------------------------ | | fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections | | fabric.l2connection.read | View Fabric Layer 2 (L2) Connections | | fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections | | fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections | | fabric.servicetoken.create | Create Fabric Service Tokens | | fabric.servicetoken.read | View Fabric Service Tokens | | fabric.servicetoken.delete | Delete Fabric Service Tokens | | fabric.servicetoken.update | Update Fabric Service Tokens | | resourcemanager.project.read | View Projects in the resource hierarchy | | billing.billingaccount.read | View Billing Account | | internetAccess.service.create | Create Equinix Internet Access service instances | | internetAccess.service.read | View Equinix Internet Access service instances | | internetAccess.service.modify | Edit Equinix Internet Access service instances | | internetAccess.service.delete | Delete Equinix Internet Access service instances | ### 结构服务配置文件管理器[​](#结构服务配置文件管理器 "Direct link to 结构服务配置文件管理器") 管理服务配置文件、连接和 EIA。 | Role Permission Value(s) | Permission Description | | ----------------------------- | ------------------------------------------------------------ | | fabric.l2connection.create | Create Fabric Layer 2 (L2) Connections | | fabric.l2connection.read | View Fabric Layer 2 (L2) Connections | | fabric.l2connection.update | Update Fabric Layer 2 (L2) Connections | | fabric.l2connection.delete | Delete Fabric Layer 2 (L2) Connections | | fabric.l2connection.approve | Approve Fabric Layer 2 (L2) Connections | | fabric.serviceprofile.create | Create Fabric Layer 2 (L2) and Network Edge Service Profiles | | fabric.serviceprofile.delete | Delete Fabric Layer 2 (L2) and Network Edge Service Profiles | | fabric.serviceprofile.read | Read Fabric Layer 2 (L2) and Network Edge Service Profiles | | fabric.serviceprofile.update | Update Fabric Layer 2 (L2) and Network Edge Service Profiles | | resourcemanager.project.read | View Projects in the resource hierarchy | | billing.billingaccount.read | View Billing Account | | internetAccess.service.create | Create Equinix Internet Access service instances | | internetAccess.service.read | View Equinix Internet Access service instances | | internetAccess.service.modify | Edit Equinix Internet Access service instances | | internetAccess.service.delete | Delete Equinix Internet Access service instances | ### Fabric Port Viewer[​](#fabric-port-viewer "Direct link to Fabric Port Viewer") 查看结构端口。 | Role Permission Value(s) | Permission Description | | ---------------------------- | --------------------------------------- | | fabric.port.read | View Port Sessions | | resourcemanager.project.read | View Projects in the resource hierarchy | ### Fabric Port Manager[​](#fabric-port-manager "Direct link to Fabric Port Manager") 管理 Fabric 端口 | Role Permission Value(s) | Permission Description | | ---------------------------- | --------------------------------------- | | fabric.port.read | View Port Sessions | | fabric.port.placeorder | Create Fabric Port Orders | | resourcemanager.project.read | View Projects in the resource hierarchy | ### Stream Subscription Manager[​](#stream-subscription-manager "Direct link to Stream Subscription Manager") Create Stream Subscriptions | Role Permission Value(s) | Permission Description | | -------------------------------- | -------------------------------------------------------------------------------------------- | | fabric.streamsubscription.manage | Permission to create subscriptions for the delivery of telemetry data to your data collector | ### 订阅密钥查看器[​](#订阅密钥查看器 "Direct link to 订阅密钥查看器") 查看订阅密钥 | Role Permission Value(s) | Permission Description | | --------------------------- | ------------------------------------- | | fabric.subscriptionkey.view | Permission to view a subscription key | ## 织物云路由器[​](#织物云路由器 "Direct link to 织物云路由器") ### 织物云路由器查看器[​](#织物云路由器查看器 "Direct link to 织物云路由器查看器") 查看 Fabric 云路由器实例。 | Role Permission Value(s) | Permission Description | | ----------------------------- | ---------------------------- | | fabric.fabriccloudrouter.read | Get Fabric Cloud Router | | fabric.routefilter.read | Get Route Filter | | fabric.routeaggregation.read | Get Route Aggregation Policy | ### Fabric Cloud Router Manager[​](#fabric-cloud-router-manager "Direct link to Fabric Cloud Router Manager") 创建并管理 Fabric Cloud 路由器实例。 | Role Permission Value(s) | Permission Description | | ------------------------------- | --------------------------------------- | | fabric.fabriccloudrouter.delete | Delete Fabric Cloud Router | | fabric.fabriccloudrouter.update | Update Fabric Cloud Router | | fabric.fabriccloudrouter.read | Get Fabric Cloud Router | | fabric.fabriccloudrouter.create | Create Fabric Cloud Router | | fabric.routefilter.create | Create Route Filter | | fabric.routefilter.read | Get Route Filter | | fabric.routefilter.update | Update Route Filter | | fabric.routefilter.delete | Delete Route Filter | | fabric.routeaggregation.create | Create Route Aggregation Policy | | fabric.routeaggregation.read | Get Route Aggregation Policy | | fabric.routeaggregation.update | Update Route Aggregation Policy | | fabric.routeaggregation.delete | Delete Route Aggregation Policy | | resourcemanager.project.read | View Projects in the resource hierarchy | | billing.billingaccount.read | View Billing Account | ## Equinix Precision Time (EPT)[​](#equinix-precision-time-ept "Direct link to Equinix Precision Time (EPT)") ### EPT Service Admin[​](#ept-service-admin "Direct link to EPT Service Admin") 管理 EPT 服务。 | Role Permission Value(s) | Permission Description | | ---------------------------- | ----------------------------------------------- | | resourcemanager.org.read | View Orgs in the resource hierarchy | | billing.billingaccount.read | View Billing Accounts in the resource hierarchy | | resourcemanager.project.read | View Projects in the Resource Hierarchy | | ept.service.admin | EPT service admin | ## Colocation仪表板权限[​](#colocation仪表板权限 "Direct link to Colocation仪表板权限") 这些权限类型专门用于与主机托管相关的产品、资产和服务:管理和IBX访问服务请求、订购、Install Base、计费和付款、 IBX服务通知、Smart Hands支持计划、Colocation订购、虚拟资产通知权限、电力消耗报告权限、可持续性报告权限。 | Category | Description | | ---------------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | Administration and IBX Access Services Request | Allows the user to schedule IBX access requests (Work Visits, Conference Rooms, and Data Center Tours). Allows administrators to manage other Customer Portal user accounts. | | Ordering | Allows the user to place orders in the portal (for Shipments, Cross Connect and Intra-Facility Cables, Network Ports, Smart Hands, Accessories, Power, Trouble Tickets), to view orders by other users, and to view purchase orders for their organization. | | IBX Data Center Access | Allows the user to access IBX data centers and cages/cabinets, to bring guests, and to remove equipment. | | Install Base | Allows the user to view details about their organization's products/assets and purchase orders. Controls access to the Install Base screen, Install Base report, Colocation Assets screen, and Purchase Order Management screen. | | Billing and Payments | Allows the user to view financial records, payment history, and purchase orders for their organization. | | IBX Services Notifications | Allows the user to subscribe to notifications about IBX incidents, network incidents, unannounced shipments, managed services, and IBX policy violations. Also allows the user to view incidents on the [Service Insight Dashboard](/zh-Hans/incidents-notifications/service-insight/esi.md). **Important:** At least two administrators in each organization must be configured to receive IBX policy violations (i.e., the **Can view and subscribe to IBX Policy Violation Notifications** permission). | | Internet Exchange Portal | Allows the user to access the Internet Exchange (IX) portal. | | Equinix Internet Access and Equinix Connect | Allows the user to view their Equinix Internet Access and Equinix Connect traffic and network behavior. | | Equinix Fabric and Network Edge | Allows the user to access the Fabric and Network Edge products. | | Smart View | Allows the user to order Equinix Smart View for IBXs, and view Smart View data. | | Remote Network Products | Allows the user to order remote network products for IBXs in a specific region. | | Smart Hands Support Plan | Allows the user to order a Smart Hands support plan and subscribe to notifications for their support plan. | | Colocation Ordering | Allows the user to order Secure Cabinet and Private Cage products online. | | Virtual Asset Notification Permission | Allows the user to view and subscribe to Fabric and Network Edge virtual asset notifications. | | Managed Services Portal | Allows the user to access the Managed Services portal. | | Power Consumption Report | Allows the user to run the Power Consumption Report. |