ice icon indicating copy to clipboard operation
ice copied to clipboard

Published 20 hours ago verified publisher icon Teevity

update doc with clearer explanations on iam policy

Open AdrienLemaire opened this issue 9 years ago • 2 comments

Hi,

I needed to spend some time to figure out what were the appropriate policy rules to get ice working, so it would probably be a good idea to update the doc with those informations.

From what I found:

Role 'ice' perms:

  • Read-only permission for S3

User 'ice' perms:

  • Read-only permission for *
  • s3: perms for "arn:aws:s3:::working_billing/*
  • "ec2:DescribeReservedInstancesOfferings" for *
  • sts:assumeRole for "arn:aws:iam::812891912463:role/ice"

Maybe that's still not enough and my ice processor will break at some point, or maybe I gave too much perms and they could be reduced further. Advices appreciated !

AdrienLemaire avatar Aug 08 '14 05:08 AdrienLemaire

+1

fawaf avatar Aug 08 '14 19:08 fawaf

+1

inhumantsar avatar Dec 09 '15 19:12 inhumantsar