Questions tagged with IAM Policies

Content language: English

Select up to 5 tags to filter
Sort by most recent

Browse through the questions and answers listed below or filter and sort to narrow down your results.

Hi there, I used the following statement to allow IAM users to terminate their own ssm sessions. ``` { "Effect": "Allow", "Action": "ssm:TerminateSession", "Resource":...
0
answers
0
votes
13
views
AKMin
asked an hour ago
Hello, I need assistance with creating a new EC2 role. According to the documentation, I should create a new role from IAM and select EC2 under AWS service. However, after creating the role, there is...
Accepted AnswerAmazon EC2IAM Policies
1
answers
1
votes
25
views
Kishore
asked 4 hours ago
TL;DR: A new devops want to use the current EKS which encrypted using KMS, the IAM have administrator access which copied from the old devops guy. I've joined a new company which have eks cluster, to...
1
answers
0
votes
27
views
David
asked 13 hours ago
Hi AWS, I have created an SCP to explicitly deny use of AWS services other than 4 approved AWS regions, i.e. `us-east-1`, `us-east-2`, `us-west-1` and `us-west-2`. Here is the SCP code: ``` { ...
1
answers
0
votes
79
views
profile picture
asked 2 days ago
I encountered an issue while deploying my pipeline code to Staging Account, and I'm seeking assistance to resolve it. Here are the details: Pls help!!!!!!! Error Message: ``` Error message Access...
1
answers
0
votes
163
views
Nafiu
asked 3 days ago
It's failing on Create Service. I've made a service role, I've assigning it and the logs even show it's assuming the role. Still denied. I even gave the role Admin, still denied. `` { ...
3
answers
0
votes
239
views
Kelnor
asked 5 days ago
I used the AWS Policy Generator to create a policy for my S3 bucket. Unfortunately, I closed the Policy Generator console, so I no longer have access to the actual JSON file. After completing the...
2
answers
0
votes
216
views
asked 6 days ago
Hi I'm trying to add a policy to a public API gateway (which invokes a lambda) that will make it so that it only accepts traffic from our twingate (VPN) Ip and from the VPC environment IP that api...
1
answers
0
votes
146
views
sp079
asked 7 days ago
hi, i want to deny console login if my any i am user performing console login without connecting to VPN or without from allowed IP ranges. i did tried to put this policy { "Version":...
3
answers
0
votes
209
views
Shriram
asked 7 days ago
I need to block Boto3 client to access Athena workgroup while allowing Tableau. Both use JDBC driver. Is there any port/IAM policy to achieve this? Both Tableau and Boto3 client are accessing from...
2
answers
0
votes
250
views
asked 7 days ago
How can I ensure that my IAM role can access the Secrets value stored in Secrets Manager? I am using this IAM role as an ECS Container role. My secret name is acme/prod/secret, which is encrypted...
2
answers
0
votes
213
views
Paul
asked 8 days ago
I have two main roles that users use that we will call UserRoleA and UserRoleB. What I want to be able to do is to either allow or deny session manager access to the tasks within a given cluster to...
1
answers
0
votes
226
views
George
asked 8 days ago