1 Answer
- Newest
- Most votes
- Most comments
0
Two things I notice, the first your quotes are not actually double-quotes - you have “
and not "
, this would cause an issue, but this could also be just an artifact of not using a code-block when you copied-and-pasted your question. Second, you do not have a full valid template here, only a snippet.
A json version of this template that works is:
{
"AWSTemplateFormatVersion": "2010-09-09",
"Description": "Configure the AWSCloudFormationStackSetAdministrationRole to enable use of AWS CloudFormation StackSets.",
"Resources": {
"CFNUserGroup": {
"Type": "AWS::IAM::Group",
"Properties": {
"GroupName": "CloudFormationUserGroup"
}
},
"AdministrationRole": {
"Type": "AWS::IAM::Policy",
"Properties": {
"PolicyName": "CFNUsers",
"PolicyDocument": {
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"cloudformation:Describe*",
"cloudformation:List*",
"cloudformation:Get*"
],
"Resource": "*"
}
]
},
"Groups": [
{
"Ref": "CFNUserGroup"
}
]
}
}
}
}
And the same template in YAML (which I personally find easier to use with CloudFormation) is:
AWSTemplateFormatVersion: '2010-09-09'
Description: Configure the AWSCloudFormationStackSetAdministrationRole to enable use of AWS CloudFormation StackSets.
Resources:
CFNUserGroup:
Type: AWS::IAM::Group
Properties:
GroupName: CloudFormationUserGroup
AdministrationRole:
Type: AWS::IAM::Policy
Properties:
PolicyName: CFNUsers
PolicyDocument:
Version: '2012-10-17'
Statement:
- Effect: Allow
Action:
- cloudformation:Describe*
- cloudformation:List*
- cloudformation:Get*
Resource: '*'
Groups:
- !Ref CFNUserGroup
Try one of them - and see if you still have an issue.
Relevant content
- asked 8 months ago
- asked 9 months ago
- asked 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated 2 years ago
- published 2 years ago