1 Antwort
- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
0
Hello.
Is it correct that AdministratorAccess is set for the IAM user "banana-jenkins"?
Does your AWS account use Organizations or similar to set up guardrails with SCP?
If SCP is set, there is a possibility that it is rejected by SCP.
https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html
Basically, if AdministratorAccess is set, I think all Route53 operations are permitted.
The only thing restricted is the source IP to our Jenkins cluster
What does it mean to be restricted by IP?
Does this mean that it is set using an IAM condition key?
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor einem Jahr
- AWS OFFICIALAktualisiert vor einem Jahr
- AWS OFFICIALAktualisiert vor einem Jahr
Can you post the content of your IAM permission policy... (sanitize IPs first)