1 Answer
- Newest
- Most votes
- Most comments
0
As far as I'm aware, there's no easy option where you can provide a template and it will tell you what permissions you need.
There are a couple of options though
- Look through the documentation for each service and identify the permissions you'll need to manage a resource - https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html is a useful document for this.
- you could deploy the template with a specific IAM role then use CloudTrail to review the actions that were carried out.
Don't forget you don't just need actions to create the resources, but also to query, update and delete.
answered 8 months ago
Relevant content
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 2 years ago