Permissions option is missing from user sub-accounts. How do I enable it for sub accounts? In the screenshot below I am logged in on the main account.
Asked
Active
Viewed 163 times
1 Answers
0
The "Permissions" step will only show up if the user that's trying to create the new environment has permissions to list IAM roles (iam:ListRoles). Such a policy could look like this:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"iam:ListRoles"
],
"Resource": [
"*"
]
}
]
}
Remember that the user also needs permission to pass the role to the instances created in the environment (iam:PassRole). It's also a good idea to restrict which roles the user should be allowed to pass.
Bazze
- 1,531
- 10
- 11