1 個回答
- 最新
- 最多得票
- 最多評論
-1
Hello,
To start an EC2 instance, the only Action I see that you're missing is ec2:StartInstances
.
In regards to minimum permissions for starting an instance, I would recommend allowing:
ec2:StartInstances
ec2:DescribeInstances
You may also want to grant ec2:StopInstances
if you want to allow a user to also stop the instance.
You could also limit the scope to only the user who created the instance or instances that match a specific tag. See here for additional documentation on that: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_examples_ec2_tag-owner.html
相關內容
- 已提問 6 個月前
- AWS 官方已更新 1 年前