1 Answer
- Newest
- Most votes
- Most comments
3
Hi,
What you can do to be faster:
- execute your stack creation under a role with all privileges to allow it to go through
- Go then to CloudTrail to see all API calls made during the creation by CloudFormation
- Create a role with exactly the IAM authorizations corresponding to the API calls.
That is the fastest way I know to be able to define a role for CFN with least privileges.
Best,
Didier
Relevant content
- asked 4 years ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated a year ago