By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

I want to create a folder in the shared top directory of FSx.

0

I want to create a folder in the shared top directory of FSx. Flow Powershell commands using ssm's AWS-RunPowerShellScript. However, the executing user is ssm-user. This user is not an active directory user and access is denied. The New-Item command does not set credentials. Is it possible to create a folder in the FSx shared top directory by running the powershell command from ssm?

Topics
Security, Identity, & ComplianceManagement & GovernanceStorage
Tags
AWS Directory ServiceAWS Systems ManagerAmazon FSx for Windows File ServerAWS Tools for Windows PowerShell
Language
English
AWS-User-0207697
asked 2 years ago605 views
1 Answer
1

A similar question was asked here and has two different approaches on how to solve issues like this.

  • Fetching AD User credentials from Secrets Manager
  • Granting the AD Computer object permission to execute the command

See the answer section for more details.
https://repost.aws/questions/QU0nNAbP6mTNiszw8JqzX1rQ/about-the-user-who-executes-ssm

profile pictureAWS
JoeD_AWS
answered 2 years ago
  • AWS-User-0207697
    2 years ago

    Thank you for your response. The New-Item command does not allow optional credentials. Therefore, I would like to give permissions to the computer object. But I don't know how to do that. If you know how to do that, please let me know. Thank you so much.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content