AWS IAM is failing with missing permissions that are unrecognized by AWS
0
A developer on our team is trying to view AWS CloudFront caching stats (https://console.aws.amazon.com/cloudfront/v3/home?#/popular_urls and https://console.aws.amazon.com/cloudfront/v3/home?#/cache) and is getting IAM permissions errors saying that he doesn't have cloudfront:GetPopularURLs and cloudfront:ListCacheStatsDataPointSeries permissions. I'm trying to give him access, but these IAM permissions don't exist in the IAM UI (see screenshots below). How can that be?
1 回答
- 最新
- 投票最多
- 评论最多
1
Some actions are not supported in the Visual Editor. But you can get past that by adding those action using the JSON tab or pasting a JSON policy document. A policy like the following works though it would show the error "Unrecognised Actions" in Policy summary
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": [
"cloudfront:ListCacheStatsDataPointSeries",
"cloudfront:GetPopularURLs",
"cloudfront:ListDistributions"
],
"Resource": "*"
}
]
}
已回答 2 年前
相关内容
AWS 官方已更新 3 年前- AWS 官方已更新 1 年前
