According to the documentation, this resource requires the following. The question I have is it possible add IAM policies to Role so that no AWS CLI configuration is required. I was able to get the fence_aws command to work with embeddeing AWS CLI config info by providing specific IAM policies.

• preconfigured AWS CLI running environment (AccessKey, SecretAccessKey, etc.)

- a reserved secondary private IP address for EC2 instances high availablity

- IAM user role with the following permissions:

* DescribeInstances

* AssignPrivateIpAddresses

* UnassignPrivateIpAddresses