User has Console access but needs Console permissions
One of my users needs to generate Keys but has no permissions for that or any other default console action. He has a password and is able to login to the console and can change his password but that's the only access he has. His console access is enabled. Please see attached screen captures.
Please let me know if there any other details you might require to help me with this issue.
Thank you
Hi.
Do you want to give the user permission to generate keys?
Please refer to the following and give iam:CreateAccessKey permission to user.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "CreateOwnAccessKeys",
"Effect": "Allow",
"Action": [
"iam:CreateAccessKey",
"iam:GetUser",
"iam:ListAccessKeys"
],
"Resource": "arn:aws:iam::*:user/${aws:username}"
}
]
}
https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html
The user is able to login to the console this is authentication. User will require authorization before they can perform any actions. You will need to attach a access policy to the user account before any actions can be performed.
For more details, please refers to:
Relevant content
- asked 3 years ago
- Accepted Answerasked 2 months ago
- asked 8 months ago
AWS OFFICIALUpdated 8 months ago- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 10 months ago
Seems strange that this is not an AWS managed policy. That would certainly make it easier to find.
Thanks for your help. I appreciate it very much.