Highest Voted 'aws-roles' Questions

0

votes

1 answer

Which role needs getSecrets permissions to be able to deploy this CDK stack?

I'm getting a deploy-time permissions error related to a Secret referenced with Secret.from_secret_attributes. # Both param 2 and secret_complete_arn need to populate from env vars. secret = Secret.from_secret_attributes(self,…

aws-lambda aws-cdk aws-roles

asked Jan 18 '23 at 17:11

John O

4,863
8
45
78

0

votes

1 answer

AWS Policy deny access on all production resources

In our team, we have both our production and development stack in the same AWS account. These stacks are distinguished by their resource name. For example, we have a S3 bucket example-dev-bucket and example-prod-bucket . Al these resources are thus…

amazon-web-services aws-cloudformation aws-policies aws-roles

asked Jan 11 '23 at 12:42

JanJetze

13
2
5

0

votes

1 answer

CDK - Add policies to role with For each

I'm trying to create a Role with some policies, which will differ from lambda to lambda. The ideal scenario would be to have a function where the role and policies are all created and then I'd just call the function and give it the name of the role…

typescript amazon-iam aws-cdk aws-roles

asked Oct 03 '22 at 12:35

Nelson

17
6

0

votes

1 answer

AWS permission for role: AccessDeniedException

I have an AWS Role with ReadOnlyAccess (AWS Managed Policy). I need to make this role capable of executing some actions, for example start/stop an Amazon EC2 instance and connect via ssm in eu-west-1 and eu-central-1 regions, but even full…

amazon-ec2 amazon-iam aws-ssm aws-roles aws-permissions

asked Aug 29 '22 at 14:37

Nika Khliobas

3
1

0

votes

1 answer

AWS trusted entity with multiple principal types and condition

I have a Terraform code that generates a trusted entity like this that is attached to a role for cross-account access: { "Version": "2012-10-17", "Statement": [ { "Sid": "", "Effect": "Allow", …

amazon-iam terraform-provider-aws aws-policies aws-roles

asked Jul 22 '22 at 09:56

user2728349

139
1
3
12

0

votes

0 answers

AWS: How could I programatically add IAM Roles to the EC2 instances that are generated from a Launch Template in Auto-Scaling Group?

I'm quite new to AWS and I have this issue that I'm confused about: basically we are trying to add AWS Cloudwatch logging to our EC2 instances. I was able to set it up on Staging instance with manually adding IAM Role for Cloudwatch and running…

amazon-web-services amazon-ec2 amazon-cloudwatch amazon-cloudwatchlogs aws-roles

asked Jun 17 '22 at 00:18

Konstantink1

575
1
8
26

0

votes

1 answer

AWS ECS update-service error using cross account

From aws account A I'm trying to force deploy an ecs service on account B. Before issuing the update-service command I'm assuming a role which has account B as the trusted entity: temp_role=$(aws sts assume-role --role-arn…

amazon-web-services amazon-iam amazon-ecs go-cd aws-roles

asked Jun 12 '22 at 15:56

Paras Thakur

119
1
9

0

votes

1 answer

Handle execution role to Setup SageMaker Domain (not root user)

I'm working on an AWS account managed by another team which use it only for S3 storage. We have authorization to use sagemaker, and administartor said “AmazonSageMakerFullAccess” have been given to me. I'm trying to access sagemaker studio, for that…

amazon-web-services amazon-sagemaker aws-roles

asked Mar 02 '22 at 10:03

ThomaS

815
4
13

0

votes

0 answers

packer: Unable to locate credentials

I'm facing a bit of a weird problem, I'm writing a JSON file to configure Packer in order to build an AMI machine. Host OS is windows and machine OS is Ubuntu. I am using instance type: amazon-instance. I am getting this error ==> amazon-instance:…

amazon-iam packer aws-roles

asked Feb 02 '22 at 13:06

eylon levi

77
2
11

0

votes

1 answer

Making a call to a Dynamo DB set up on a different account with AWS Java SDK using Roles

I have a Java app set up on an EC2 instance on AWS_ACCOUNT_A and am trying to make a call to a Dynamo_DB table that has been set up on AWS_ACCOUNT_B. I am doing this by assuming an instance role on EC2 that has been configured so that it has access…

amazon-web-services amazon-ec2 aws-java-sdk aws-roles

asked Dec 23 '21 at 12:24

Dragan

227
3
9

0

votes

1 answer

AWS Datadog integration issue

I have created AWS Role/Policies but when I am trying to integrate AWS with Datadog APM I entered my AWS account details and role, and I see: Access denied. See https://docs.datadoghq.com/integrations/amazon_web_services/ Can someone please help…

amazon-web-services amazon-cloudfront datadog apm aws-roles

asked Aug 10 '21 at 08:10

Rohit Mittal

395
1
5
18

0

votes

2 answers

What AWS Role Policies do I need to be able to run AWS CLI commands

When ever I run a command to get DeviceFarm projects or Schedule a run I get errors stating that I do not have permissions to run the commands and that there is an explicit deny on my user. I am in the role settings and cannot find any policy to add…

amazon-web-services aws-cli aws-device-farm aws-policies aws-roles

asked Jul 28 '21 at 23:58

pnizzle

6,243
4
52
81

-1

votes

1 answer

If a AWS IAM Policy is directly assigned to a AWS User rather than to a AWS Role, then what's the use of the AWS Role?

If a AWS IAM Policy is directly assigned to a AWS User rather than to a AWS Role, then what's the use of the AWS Role ?

aws-policies aws-roles

asked Aug 30 '23 at 08:51

user2192023

1,601
2
11
12

-1

votes

2 answers

IAM approval in codepipeline when assuming role

we have users logging in from our landing account to CI/CD account- usually with Admin or read-only roles. We would like to use IAM groups in CI/CD account so that only the users in the specific groups can approve/reject the deployment (but we have…

amazon-web-services permissions amazon-iam aws-codepipeline aws-roles

asked Sep 10 '21 at 22:20

systemdebt

4,589
10
55
116

Questions tagged [aws-roles]