2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
2
You can leverage Condition operator in IAM JSON policy elements Eg. Boolean conditions enable the creation of Condition elements that limit access by comparing a key to either "true" or "false."
{
"Sid": "DenyLaunchingPublicAMI",
"Effect": "Deny",
"Action": "ec2:RunInstances",
"Resource": "arn:aws:ec2:<region>::image/ami-*",
"Condition": {
"Bool": {
"ec2:Public": "true"
}
}
Document:
답변함 8달 전
1
You can also consult the following https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/sharingamis-intro.html#block-public-access-to-amis
답변함 8달 전
