下表列出各資料邊界適用的 Sovereign Controls by Partners 產品和服務。如果特定資料邊界未列出某項服務,表示該服務不支援,且未符合資料邊界的控制項規定。如果合作夥伴客戶未進行適當的盡職調查,且未充分瞭解 Sovereign Controls by Partners 在共同責任模式下的責任,建議不要使用不支援的產品。不受支援的產品可能會與受支援的產品共用 API 端點,因此所有使用者都能存取。
| 資料邊界 | 支援的產品 | API 服務 1 |
|---|---|---|
| S3NS 提供的法國資料邊界 | Access Context Manager |
accesscontextmanager.googleapis.com |
| 資料存取透明化控管機制 |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| GKE 備份 |
gkebackup.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| BigQuery 資料移轉服務 [2] |
bigquerydatatransfer.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| 二進位授權 |
binaryauthorization.googleapis.com |
|
| 憑證授權單位服務 |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Service Mesh |
mesh.googleapis.commeshca.googleapis.commeshconfig.googleapis.comtrafficdirector.googleapis.comnetworkservices.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| 連結 |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全性規則 |
firebaserules.googleapis.com |
|
| Firestore |
firestore.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| GKE Identity Service |
anthosidentityservice.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| 身分與存取權管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Airflow |
composer.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 機構政策服務 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| Speech-to-Text |
speech.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.com |
|
| 虛擬私有雲 (VPC) |
compute.googleapis.com |
|
| T-Systems 的德國資料邊界 | Access Context Manager |
accesscontextmanager.googleapis.com |
| 資料存取透明化控管機制 |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| GKE 備份 |
gkebackup.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| BigQuery 資料移轉服務 [2] |
bigquerydatatransfer.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| 二進位授權 |
binaryauthorization.googleapis.com |
|
| 憑證授權單位服務 |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Service Mesh |
mesh.googleapis.commeshca.googleapis.commeshconfig.googleapis.comtrafficdirector.googleapis.comnetworkservices.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| 連結 |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全性規則 |
firebaserules.googleapis.com |
|
| Firestore |
firestore.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| GKE Identity Service |
anthosidentityservice.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| 身分與存取權管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Airflow |
composer.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 機構政策服務 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| Speech-to-Text |
speech.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.com |
|
| 虛擬私有雲 (VPC) |
compute.googleapis.com |
|
| PSN 提供的義大利資料邊界 | Access Context Manager |
accesscontextmanager.googleapis.com |
| 資料存取透明化控管機制 |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| GKE 備份 |
gkebackup.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| BigQuery 資料移轉服務 [2] |
bigquerydatatransfer.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| 二進位授權 |
binaryauthorization.googleapis.com |
|
| 憑證授權單位服務 |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Service Mesh |
mesh.googleapis.commeshca.googleapis.commeshconfig.googleapis.comtrafficdirector.googleapis.comnetworkservices.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| 連結 |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全性規則 |
firebaserules.googleapis.com |
|
| Firestore |
firestore.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| GKE Identity Service |
anthosidentityservice.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| 身分與存取權管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Airflow |
composer.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 機構政策服務 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| Speech-to-Text |
speech.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.com |
|
| 虛擬私有雲 (VPC) |
compute.googleapis.com |
|
| CNTXT 提供的沙烏地阿拉伯王國資料邊界進階版 | Access Context Manager |
accesscontextmanager.googleapis.com |
| 資料存取透明化控管機制 |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| 憑證授權單位服務 |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Next Generation Firewall |
compute.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| 連結 |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| 重要聯絡人 |
essentialcontacts.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全性規則 |
firebaserules.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| 身分與存取權管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 機構政策服務 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Personalized Service Health |
servicehealth.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.comservicenetworking.googleapis.com |
|
| 虛擬私有雲 (VPC) |
compute.googleapis.com |
|
| CNTXT 提供的沙烏地阿拉伯王國資料邊界基礎機制 | Access Context Manager |
accesscontextmanager.googleapis.com |
| 資料存取透明化控管機制 |
accessapproval.googleapis.com |
|
| Artifact Registry |
artifactregistry.googleapis.com |
|
| BigQuery [2] |
bigquery.googleapis.combigqueryconnection.googleapis.combigquerydatapolicy.googleapis.combigqueryreservation.googleapis.combigquerystorage.googleapis.com |
|
| Bigtable |
bigtable.googleapis.combigtableadmin.googleapis.com |
|
| 憑證授權單位服務 |
privateca.googleapis.com |
|
| Cloud Build |
cloudbuild.googleapis.com |
|
| Cloud DNS |
dns.googleapis.com |
|
| Cloud External Key Manager (Cloud EKM) |
cloudkms.googleapis.com |
|
| Cloud HSM |
cloudkms.googleapis.com |
|
| Cloud Interconnect |
compute.googleapis.com |
|
| Cloud Key Management Service (Cloud KMS) |
cloudkms.googleapis.com |
|
| Cloud Load Balancing |
compute.googleapis.com |
|
| Cloud Logging |
logging.googleapis.com |
|
| Cloud Monitoring [3] |
monitoring.googleapis.com |
|
| Cloud NAT |
networkconnectivity.googleapis.com |
|
| Cloud Next Generation Firewall |
compute.googleapis.com |
|
| Cloud Router |
networkconnectivity.googleapis.com |
|
| Cloud Run |
run.googleapis.com |
|
| Cloud SQL |
sqladmin.googleapis.com |
|
| Cloud Storage |
storage.googleapis.com |
|
| Cloud VPN |
compute.googleapis.com |
|
| Cloud Workstations |
workstations.googleapis.com |
|
| Compute Engine |
compute.googleapis.com |
|
| 連結 |
gkeconnect.googleapis.comconnectgateway.googleapis.com |
|
| Dataflow |
dataflow.googleapis.comdatapipelines.googleapis.com |
|
| 重要聯絡人 |
essentialcontacts.googleapis.com |
|
| Filestore |
file.googleapis.com |
|
| Firebase 安全性規則 |
firebaserules.googleapis.com |
|
| Google Cloud Armor |
compute.googleapis.comnetworksecurity.googleapis.com |
|
| Google Kubernetes Engine |
container.googleapis.comcontainersecurity.googleapis.com |
|
| GKE Hub |
gkehub.googleapis.com |
|
| 身分與存取權管理 (IAM) |
iam.googleapis.compolicytroubleshooter.googleapis.com |
|
| Identity-Aware Proxy |
iap.googleapis.com |
|
| Knowledge Catalog |
dataplex.googleapis.comdatalineage.googleapis.com |
|
| Managed Service for Apache Spark |
dataproc-control.googleapis.comdataproc.googleapis.com |
|
| Memorystore for Redis |
redis.googleapis.com |
|
| Network Connectivity Center |
networkconnectivity.googleapis.com |
|
| 機構政策服務 |
orgpolicy.googleapis.com |
|
| Persistent Disk |
compute.googleapis.com |
|
| Personalized Service Health |
servicehealth.googleapis.com |
|
| Pub/Sub |
pubsub.googleapis.com |
|
| Resource Manager |
cloudresourcemanager.googleapis.com |
|
| Secret Manager |
secretmanager.googleapis.com |
|
| Secure Source Manager |
securesourcemanager.googleapis.com |
|
| Sensitive Data Protection |
dlp.googleapis.com |
|
| Spanner |
spanner.googleapis.com |
|
| VPC Service Controls |
accesscontextmanager.googleapis.comservicenetworking.googleapis.com |
|
| 虛擬私有雲 (VPC) |
compute.googleapis.com |
註腳
1. 視您選擇的資料邊界而定,可用的 API 端點類型可能有所不同。 本頁列出的 API 端點為全域 API 端點,但特定資料邊界可能提供或需要區域或位置 API 端點。
2. 系統支援 BigQuery,但由於內部設定程序,建立新的 Assured Workloads 資料夾時不會自動啟用。這項程序通常會在十分鐘內完成,但在某些情況下可能需要更多時間。如要檢查程序是否完成並啟用 BigQuery,請完成下列步驟:
- 前往 Google Cloud 控制台的「Assured Workloads」頁面。
- 從清單中選取新的 Assured Workloads 資料夾。
- 在「Allowed services」(允許的服務) 區段的「Folder Details」(資料夾詳細資料) 頁面中,按一下「Review Available Updates」(查看可用更新)。
- 在「Allowed services」(允許的服務) 窗格中,檢查要新增至資料夾「Resource Usage Restriction」(資源用量限制) 機構政策的服務。如果列出 BigQuery 服務,請按一下「允許服務」新增服務。
如果未列出 BigQuery 服務,請等待內部程序完成。如果服務未在資料夾建立後的 12 小時內列出,請與 Cloud Customer Care 聯絡。
啟用程序完成後,您就可以在 Assured Workloads 資料夾中使用 BigQuery。
Assured Workloads 不支援 Gemini in BigQuery。
3. 合作夥伴 Sovereign Controls 不支援 Cloud Monitoring 的綜合監控和正常運作時間檢查功能。