Questions tagged with IAM Policies

You manage access in AWS by creating policies and attaching them to IAM identities (users, groups of users, or roles) or AWS resources.

Content language: English

Select up to 5 tags to filter
Sort by most recent

Browse through the questions and answers listed below or filter and sort to narrow down your results.

I'm digging into some corners of IAM conditions that I don't use a lot, and I've been testing some sample policies to make sure real-world behavior matches my assumptions. I've created a role with...
2
answers
0
votes
27
views
profile picture
Farski
asked 2 days ago
I have a user authenticated by Cognito user-pool, role & identity-pool (using Cognito hosted-ui). After login, the user comes back to my webapp (frontend), I use the `id_token` (returned by the...
0
answers
0
votes
28
views
profile picture
Fabio
asked 3 days ago
I have an application deployed on on-prem server, is there a way to use only IAM role or policy to access AWS SDk. I dont want to provide or store the secret key and access key anywhere to access it....
2
answers
0
votes
41
views
Braj
asked 5 days ago
I am generating the AWS SSM inventory data (us-east-1) and pushing it to the S3 bucket (us-east-1) in same region and it works. But If I push the SSM inventory data (us-east-1) to S3 bucket...
1
answers
0
votes
16
views
asked 5 days ago
I am working on an IoT solution in which IoT devices send data to AWS Kinesis streams. Each device is identified by an IoT Thing Name, and we use this name (or its hashed value) as the Kinesis...
1
answers
0
votes
24
views
Balu
asked 6 days ago
I have a codepipeline in us-east-1 region. The codebuild stage is cross-region and is in a vpc(mumbai-vpc). I want this codebuild to access the athena service in us-east-1.
1
answers
0
votes
32
views
asked 7 days ago
I have a codepipeline in us-east-1 region. The codebuild stage has a vpc to it(us-vpc). I want this codebuild to access the rds instance which is in ap-south-1 which is in mumbai-vpc.
2
answers
0
votes
34
views
asked 7 days ago
Created a new EKS cluster v 1.29 and everything started failing. The last one week, i'm trying to make this work but things were failing one by one.. Finally made the app running but none of the apps...
1
answers
0
votes
36
views
Ragsop
asked 8 days ago
I am a non-technical person, just trying to get some software built to make my business ops easier. It is incredibly confusing to understand how to add permissions consistently, especially with two...
3
answers
0
votes
45
views
Barn
asked 11 days ago
## Questions * Are the permissions needed for developers to create EKS cluster documented somewhere? * Is there some step that could be performed to get the "Quickstart" cluster to be created without...
1
answers
0
votes
25
views
asked 11 days ago
Hi, may I know what is the format of an inline IAM Policy? Is there is a way to programmatically get it using boto3 or awscli? awscli and boto3.iam.client both return just the iam policy name which...
1
answers
0
votes
34
views
Gab
asked 12 days ago
I am currently trying to access my Cloudwatch logs from sa-east-1, but when I try to create my datasource I get the following: <html> <head><title>504 Gateway Time-out</title></head> <body>...
1
answers
0
votes
35
views
Esteban
asked 15 days ago