Questions tagged with IAM Policies
You manage access in AWS by creating policies and attaching them to IAM identities (users, groups of users, or roles) or AWS resources.
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Hi AWS, is it possible to restrict IAM policy simulator so that it runs the checks only for certain specified regions as currently it supports all AWS regions. If yes, please help me with the steps...
I have an AWS ApiGateway v2 websocket api that sends request to a microservice (deployed on Kubernetes not lambda) using a [HTTP...
Hi,
So i have a use case,
i have created users in my Azure AD and created application and configured SSO with Iam Identity center in AWS,
users are reflecting in AWS from AZure AD which I have added...
Pls help I have a Lambda function in Account A that I need to use as a service token for a custom resource in Account B.
Pleas help with a Cloudformation Setup
Below is my Setup
**Account A...
I am getting started with boto3 python library and AWS and want to send SSM commands to an EC2 Ubuntu Linux instance started from python code-standard AWS AMI ami-0c55b159cbfafe1f0.
However the...
Please Help
I have a Lambda function in **Account A** that I want to be used as a service token in **Account B** and invoked by **Account C **based on a certain role. I am using CloudFormation in...
Hi there,
I used the following statement to allow IAM users to terminate their own ssm sessions.
```
{
"Effect": "Allow",
"Action": "ssm:TerminateSession",
"Resource":...
Hello, I need assistance with creating a new EC2 role. According to the documentation, I should create a new role from IAM and select EC2 under AWS service. However, after creating the role, there is...
TL;DR: A new devops want to use the current EKS which encrypted using KMS, the IAM have administrator access which copied from the old devops guy.
I've joined a new company which have eks cluster, to...
Hi AWS, I have created an SCP to explicitly deny use of AWS services other than 4 approved AWS regions, i.e. `us-east-1`, `us-east-2`, `us-west-1` and `us-west-2`. Here is the SCP code:
```
{
...
I encountered an issue while deploying my pipeline code to Staging Account, and I'm seeking assistance to resolve it. Here are the details:
Pls help!!!!!!!
Error Message:
```
Error message
Access...
It's failing on Create Service.
I've made a service role, I've assigning it and the logs even show it's assuming the role. Still denied. I even gave the role Admin, still denied.
``
{
...