An AWS Identity and Access Management (IAM) user on my AWS account can't submit support cases.
Resolution
By default, IAM users on an account can access services and functions only after the account root user explicitly grants access.
To grant permissions to IAM users to access the AWS Support Center, attach the AWSSupportAccess managed policy as a permissions policy for the identity.
The following example policy grants access to AWS Support, but the IAM user can't resolve cases:
{ "Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "support:*",
"Resource": "*"
},
{
"Effect": "Deny",
"Action": "support:ResolveCase",
"Resource": "*"
}]
}
For more information, see Manage access to AWS Support Center.
Before you contact AWS Support, make sure that the IAM users have permissions to view and access AWS services. To update an existing IAM policy, see Managing IAM policies.
Note: AWS Support is limited in what they can discuss with IAM users. However, AWS Support can discuss account and resource details with the account root user.
Related information
Controlling access to AWS resources using policies
Policies and permissions in IAM