下表列出了 Sovereign Controls by Partners 支持的产品和服务(按每个数据边界划分)。如果某个服务未列在给定的数据边界中,则表示该服务不受支持,并且未满足相应数据边界的控制要求。在未进行尽职调查并充分了解责任共担模型下您的责任之前,不建议“Sovereign Controls by Partners”客户使用不受支持的产品。不受支持的产品可能与受支持的产品共用一个 API 端点,从而可供所有用户使用。
| 数据边界 | 支持的产品 | API 服务 1 |
|---|---|---|
| 由 S3NS 提供的法国数据边界服务 | Access Context Manager |
accesscontextmanager.googleapis.com |
| Access Transparency |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| Backup for GKE |
gkebackup.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| BigQuery Data Transfer Service [2] |
bigquerydatatransfer.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| Binary Authorization |
binaryauthorization.googleapis.com |
|
| Certificate Authority Service |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Service Mesh |
mesh.googleapis.commeshca.googleapis.commeshconfig.googleapis.comtrafficdirector.googleapis.comnetworkservices.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| Connect |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全规则 |
firebaserules.googleapis.com |
|
| Firestore |
firestore.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| GKE Identity Service |
anthosidentityservice.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| 身份和访问权限管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Airflow |
composer.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 组织政策服务 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| Speech-to-Text |
speech.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.com |
|
| Virtual Private Cloud (VPC) |
compute.googleapis.com |
|
| 由 T-Systems 提供的德国数据边界服务 | Access Context Manager |
accesscontextmanager.googleapis.com |
| Access Transparency |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| Backup for GKE |
gkebackup.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| BigQuery Data Transfer Service [2] |
bigquerydatatransfer.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| Binary Authorization |
binaryauthorization.googleapis.com |
|
| Certificate Authority Service |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Service Mesh |
mesh.googleapis.commeshca.googleapis.commeshconfig.googleapis.comtrafficdirector.googleapis.comnetworkservices.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| Connect |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全规则 |
firebaserules.googleapis.com |
|
| Firestore |
firestore.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| GKE Identity Service |
anthosidentityservice.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| 身份和访问权限管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Airflow |
composer.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 组织政策服务 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| Speech-to-Text |
speech.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.com |
|
| Virtual Private Cloud (VPC) |
compute.googleapis.com |
|
| 意大利 PSN 数据边界 | Access Context Manager |
accesscontextmanager.googleapis.com |
| Access Transparency |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| Backup for GKE |
gkebackup.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| BigQuery Data Transfer Service [2] |
bigquerydatatransfer.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| Binary Authorization |
binaryauthorization.googleapis.com |
|
| Certificate Authority Service |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Service Mesh |
mesh.googleapis.commeshca.googleapis.commeshconfig.googleapis.comtrafficdirector.googleapis.comnetworkservices.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| Connect |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全规则 |
firebaserules.googleapis.com |
|
| Firestore |
firestore.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| GKE Identity Service |
anthosidentityservice.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| 身份和访问权限管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Airflow |
composer.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 组织政策服务 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| Speech-to-Text |
speech.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.com |
|
| Virtual Private Cloud (VPC) |
compute.googleapis.com |
|
| 由 CNTXT 提供的高级沙特阿拉伯王国数据边界 | Access Context Manager |
accesscontextmanager.googleapis.com |
| Access Transparency |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| Certificate Authority Service |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Next Generation Firewall |
compute.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| Connect |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| 重要联系人 |
essentialcontacts.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全规则 |
firebaserules.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| 身份和访问权限管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 组织政策服务 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Personalized Service Health |
servicehealth.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.comservicenetworking.googleapis.com |
|
| Virtual Private Cloud (VPC) |
compute.googleapis.com |
|
| CNTXT 提供的沙特阿拉伯王国数据边界基础 | Access Context Manager |
accesscontextmanager.googleapis.com |
| Access Transparency |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| Certificate Authority Service |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Next Generation Firewall |
compute.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| Connect |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| 重要联系人 |
essentialcontacts.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全规则 |
firebaserules.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| 身份和访问权限管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 组织政策服务 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Personalized Service Health |
servicehealth.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.comservicenetworking.googleapis.com |
|
| Virtual Private Cloud (VPC) |
compute.googleapis.com |
脚注
1. 根据您选择的数据边界,系统可能会提供不同的 API 端点类型。 本页列出的 API 端点是全球 API 端点,但对于给定的数据边界,可能需要使用区域或位置 API 端点。
2. BigQuery 受支持,但由于内部配置流程,在您创建新的 Assured Workloads 文件夹时,系统不会自动启用 BigQuery。此过程通常会在 10 分钟内完成,但在某些情况下可能需要更长时间。如需检查该进程是否已完成并启用 BigQuery,请完成以下步骤:
- 在 Google Cloud 控制台中,前往 Assured Workloads 页面。
- 从列表中选择新的 Assured Workloads 文件夹。
- 在文件夹详情页面上的允许的服务部分,点击查看可用更新。
- 在允许的服务窗格中,查看要添加到文件夹的资源使用限制组织政策中的服务。如果列出了 BigQuery 服务,请点击允许服务以添加这些服务。
如果未列出 BigQuery 服务,请等待内部进程完成。如果在创建文件夹后的 12 小时内未列出这些服务,请与 Cloud Customer Care 联系。
启用流程完成后,您可以在 Assured Workloads 文件夹中使用 BigQuery。
Assured Workloads 不支持 Gemini in BigQuery。
3. 合作伙伴的 Sovereign Controls 不支持 Cloud Monitoring 的合成监控和拨测功能。