AWS IAM is failing with missing permissions that are unrecognized by AWS
0
A developer on our team is trying to view AWS CloudFront caching stats (https://console.aws.amazon.com/cloudfront/v3/home?#/popular_urls and https://console.aws.amazon.com/cloudfront/v3/home?#/cache) and is getting IAM permissions errors saying that he doesn't have cloudfront:GetPopularURLs and cloudfront:ListCacheStatsDataPointSeries permissions. I'm trying to give him access, but these IAM permissions don't exist in the IAM UI (see screenshots below). How can that be?
1개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
1
Some actions are not supported in the Visual Editor. But you can get past that by adding those action using the JSON tab or pasting a JSON policy document. A policy like the following works though it would show the error "Unrecognised Actions" in Policy summary
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": [
"cloudfront:ListCacheStatsDataPointSeries",
"cloudfront:GetPopularURLs",
"cloudfront:ListDistributions"
],
"Resource": "*"
}
]
}
답변함 2년 전
