1 Answer
- Newest
- Most votes
- Most comments
2
Your locking down the OpenTunnel action to an instance when this applies to an Endpoint ID. You need to also allow access to the endpoints as well as to the instances
Please try this policy instead
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "SecureInstanceConnect",
"Effect": "Allow",
"Action": [
"ec2-instance-connect:OpenTunnel",
"ec2-instance-connect:SendSSHPublicKey",
"ec2-instance-connect:SendSerialConsoleSSHPublicKey"
],
"Resource": [
"arn:aws:ec2:ap-south-1:742096941866:instance/i-0e610b0467e3c0a4c",
"arn:aws:ec2:ap-south-1:742096941866:instance-connect-endpoint/*"
]
}
]
}
Gary, your assistance worked perfectly. Thank you!
Your welcome, any time Karthik
Relevant content
- Accepted Answerasked 7 months ago
- AWS OFFICIALUpdated 23 days ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
I see the problem