I applied the terraform code in this link, which contains code to apply the specific roles and permission s to service dlm lifecycle for ebs volumes.
But still I am getting access errors.
Please share any suggestions on how to fix this.
Few more steps I tried. With policy actions set to all ec2 permissions ("ec2:*"), snapshots are created without error.
But if I tried below permissions, which I got from default policy created when attempted to create lifecycle from webconsole.
{
"Effect": "Allow",
"Action": [
"ec2:CreateSnapshot",
"ec2:CreateSnapshots",
"ec2:DeleteSnapshot",
"ec2:DescribeInstances",
"ec2:DescribeVolumes",
"ec2:DescribeSnapshots",
"ec2:EnableFastSnapshotRestores",
"ec2:DescribeFastSnapshotRestores",
"ec2:DisableFastSnapshotRestores",
"ec2:CopySnapshot",
"ec2:ModifySnapshotAttribute",
"ec2:DescribeSnapshotAttribute",
"ec2:DescribeSnapshotTierStatus",
"ec2:ModifySnapshotTier"
],
"Resource": "*"
}
With above permissions, it is not working. Any suggestions
