1 Answer
- Newest
- Most votes
- Most comments
2
Your locking down the OpenTunnel action to an instance when this applies to an Endpoint ID. You need to also allow access to the endpoints as well as to the instances
Please try this policy instead
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "SecureInstanceConnect",
"Effect": "Allow",
"Action": [
"ec2-instance-connect:OpenTunnel",
"ec2-instance-connect:SendSSHPublicKey",
"ec2-instance-connect:SendSerialConsoleSSHPublicKey"
],
"Resource": [
"arn:aws:ec2:ap-south-1:742096941866:instance/i-0e610b0467e3c0a4c",
"arn:aws:ec2:ap-south-1:742096941866:instance-connect-endpoint/*"
]
}
]
}
Gary, your assistance worked perfectly. Thank you!
Your welcome, any time Karthik
Relevant content
- Accepted Answerasked 8 months ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 2 years ago
I see the problem