1 個回答
- 最新
- 最多得票
- 最多評論
-2
Hi,
Go to https://docs.aws.amazon.com/memorydb/latest/devguide/iam.identitybasedpolicies.html
You'll find there lots of examples of IAM policies for MemoryDB to execute various activities on your clusters.
Best,
Didier
相關內容
- 已提問 6 個月前
- 已提問 10 個月前
- AWS 官方已更新 1 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 3 年前
I'm NOT interested in commands to manage my cluster/resources. I'm trying to connect to my cluster. This is a none answer to my question.
At this stage, the IAM-managed resources for MemoryDB are listed here: https://docs.amazonaws.cn/en_us/memorydb/latest/devguide/iam.overview.html#iam.overview.resourcesandoperations
That is all what's available.
What is your goal: control access to given pieces of data in the cache?
then ACLs are the solutions for you: https://docs.aws.amazon.com/memorydb/latest/devguide/clusters.acls.html
Yes, I want to read/write to/from the cache, but with an ACL user of type IAM. https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-memorydb-user.html#cfn-memorydb-user-authenticationmode
The AuthenticationMode of a user can now have the type of "IAM". (I tested this when deploying my cloudformation template) There should be a way to connect to the cache node with IAM credentials. But as I stated, there is no information on how to do this. And there is no documentation that I can find. The links you're providing don't say anything about the connection process when using IAM. And even the cloudformation documentation hasn't been updated to list IAM as valid option. So my question still stands.