Support Automation Workflow (SAW) Runbook: Contain a compromised Identity and Access Management (IAM) User/Role

Understanding AWS's Handling of Deleted IAM Roles in Policies

How do I resolve the error "the closest matching container-instance container-instance-id encountered error 'AGENT'" for my service in Amazon ECS?

How do I resolve "the closest matching container-instance container-instance-id has insufficient CPU units available" error in Amazon ECS?

How do I resolve the "Creation of service was not idempotent" error that occurs when I create a new Amazon ECS service?

How can I find the resource ARN for a Trusted Advisor check result if the output doesn't contain an ARN?

> For container instances to receive the new ARN and resource ID format, the root user needs to opt in for the container instance IAM role.

I've made a role that should have the right permissions, but** I can't find how to attach it to admin/root.**  Step 10 [here ](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/instance_IAM_role.html)- The formatting doesn't work in both PowerShell and CLI.

The role is made, but it's also** not showing up in the drop down under** 'Container instance IAM role'.

Role is not attaching or available for use after creation for Container Services

Security, Identity, & Compliance

Containers

ECS TLS is not supported for services in short arn format

ECS Task is not using the role attached to it?

Enable awsvpctrunking at container instance level

ECS task execution role is not using up-to-date policy

Role is not attaching or available for use after creation for Container Services

Relevant content