Stack Overflow
Stack Overflow

Questions tagged [amazon-iam]

AWS Identity and Access Management (IAM) is an access control service for Amazon Web Services. Tag questions about using the AWS CLI, writing JSON for IAM, and using IAM SDKs.

IAM is a web service that helps you securely control access to AWS resources. With IAM, you can centrally manage permissions that control which AWS resources users can access. Use IAM to control who is authenticated (signed in) and authorized (has permissions) to use resources.

5421 questions
35
votes
2 answers

Adding roles to service accounts on Google Cloud Platform using REST API

I want to create a service account on GCP using a python script calling the REST API and then give it specific roles - ideally some of these, such as roles/logging.logWriter. First I make a request to create the account which works fine and I can…
Robert Lacok
  • 4,176
  • 2
  • 26
  • 38
34
votes
25 answers

AWS CLI listing S3 buckets gives SignatureDoesNotMatch error using IAM user credentials

I am using AWS CLI on Ubuntu 16.04 LTS, I am trying to list all buckets. In aws configure I have input the IAM user access key and IAM user secret key. This IAM user has permissions to list buckets and can list buckets in the console. But using AWS…
Piyush dhore
  • 641
  • 1
  • 9
  • 16
32
votes
5 answers

Correct S3 Policy For Pre-Signed URLs

I need to issue pre-signed URLs for allowing users to GET and PUT files into a specific S3 bucket. I created an IAM user and use its keys to create the pre-signed URLs, and added a custom policy embedded in that user (see below). When I use the…
alphadogg
  • 12,762
  • 9
  • 54
  • 88
31
votes
2 answers

Pass AWS credentials (IAM role credentials) to code running in Docker container

When running code on an EC2 instance, the SDK I use to access AWS resources, automagically talks to a locally linked web server on 169.254.169.254 and gets that instances AWS credentials (access_key, secret) that are needed to talk to other AWS…
Ali
  • 18,665
  • 21
  • 103
  • 138
30
votes
2 answers

How to rename an AWS customer IAM policy?

I have created a custom IAM policy, now I'm trying to rename it but I cannot find an option for it. The policy was not attached to anything yet. Is it possible to rename it or should I create a new policy with the correct name and delete the old…
eze1981
  • 780
  • 1
  • 7
  • 19
30
votes
1 answer

Rename an IAM Role

I made a typo while creating an IAM role to allow a lambda function to access the cloudwatch logs and to create EC2 volumes snapshots. Is there any way to rename the role, whether by using the console or the AWS CLI ?
Souad
  • 4,856
  • 15
  • 80
  • 140
28
votes
5 answers

Connecting to AWS Transfer for SFTP

I am having trouble connecting to AWS Transfer for SFTP. I successfully set up a server and tried to connect using WinSCP. I set up an IAM role with trust relationships like follows: { "Version": "2012-10-17", "Statement": [ { …
ChristopherTull
  • 464
  • 1
  • 7
  • 11
28
votes
2 answers

Organizing AWS IAM permissions: limit of 10 policies?

I'm trying to polish the organization of my IAM roles in Amazon and their access to permissions. I have groups, with policies attached, which map to groups within my company. I have reached the 10-policy limit on some groups. So, users have a…
salezica
  • 74,081
  • 25
  • 105
  • 166
28
votes
7 answers

Assumed role in AWS Lambda, access denied on SSM call

I'm getting an error in my Lambda function, which calls SSM: AccessDeniedException: User: arn:aws:sts::redacted:assumed-role/LambdaBackend_master_lambda/SpikeLambda is not authorized to perform: ssm:GetParameter on resource:…
Oli
  • 582
  • 1
  • 6
  • 18
28
votes
5 answers

Elastic Beanstalk could not find any platforms

I'm trying to deploy my django app via amazon Elastic BeanStalk(using this tutorial), but getting the following error. ERROR: Elastic Beanstalk could not find any platforms. Ensure you have the necessary permissions to access Elastic Beanstalk. How…
Krishna Mohan
  • 1,612
  • 3
  • 19
  • 27
28
votes
3 answers

Log in to AWS using Access Key ID and Secret Access Key ID

In AWS, how do I use my Access Key ID and Secret Access Key? I can't use them in IAM users sign-in link.
richersoon
  • 4,682
  • 13
  • 44
  • 74
27
votes
3 answers

Is it possible to specify a pattern for an AWS role Trust Relationship

I want to allow some roles from a different account to assume a role in my account. I don't want to specify the roles one by one, because they're prone to change frequently. I came up with this policy for the Trust Relationship, which should allow…
charli
  • 1,700
  • 1
  • 13
  • 21
27
votes
3 answers

AWS SAM - Failed to create the changeset: Waiter ChangeSetCreateComplete failed

AWS SAM deploying codebase to AWS cloud using aws-sam-cli but it throw me below error. Failed to create the changeset: Waiter ChangeSetCreateComplete failed: Waiter encountered a terminal failure state Status: FAILED. Reason: Requires capabilities :…
Sagar
  • 4,473
  • 3
  • 32
  • 37
27
votes
2 answers

Cannot create only IAM policy with cloudformation

I am having issue with creating IAM policy in cloudformation.But when I run it I get the error that Groups,Roles,Users is required: Here is my code: { "AWSTemplateFormatVersion": "2010-09-09", "Description": "AWS CloudFormation Template IAM Groups…
Hamed Minaee
  • 2,480
  • 4
  • 35
  • 63
27
votes
3 answers

AWS CodeCommit Error: git: 'credential-aws' is not a git command

I am new to Amazon Web Services world, and I am implementing Continuous Delivery to the company I work for. I followed AWS's [instructions to configure CodeCommit Service]…
Lucas Amorim Silva
  • 567
  • 1
  • 7
  • 14
1 2 3
99 100