Get Hands-on with Amazon EKS - Workshop Event Series

Whether you're taking your first steps with Kubernetes or you're an experienced practitioner looking to sharpen your skills, our Amazon EKS workshop series delivers practical, real-world experience that moves you forward. Learn directly from AWS solutions architects and EKS specialists through hands-on sessions designed to build your confidence with Kubernetes. Register now and start building with Amazon EKS!

Permission errors when creating a stack

Hello

I am trying to create a stack in AWS and wanted to know if there a better way of adding the required permissions for the stack to complete than just trying to create the stack, viewing the permisson error, adding the permission to the user, trying to create the stack again. (Essentially trial and error)

I have done this about 40 times (have amassed 35 permissions!) and wanted to know is there a better way?

Thanks in advance.

Mihailo

Topics: Management & Governance
Tags: AWS CloudFormation
Language: English

Mihailo

asked 2 years ago312 views

1 Answer

Newest
Most votes
Most comments

Hi,

What you can do to be faster:

execute your stack creation under a role with all privileges to allow it to go through
Go then to CloudTrail to see all API calls made during the creation by CloudFormation
Create a role with exactly the IAM authorizations corresponding to the API calls.

That is the fastest way I know to be able to define a role for CFN with least privileges.

Best,

Didier