amazon-redshift-utils ASSUMEROLE permission on IAM roles can't be listed by v_generate_user_grant_revoke

ASSUMEROLE permission on IAM roles can't be listed by v_generate_user_grant_revoke_ddl

Open saeedma8 opened this issue 2 years ago • 1 comments

User owns ASSUMEROLE permission on IAM roles can't be listed by https://github.com/awslabs/amazon-redshift-utils/blob/master/src/AdminViews/v_generate_user_grant_revoke_ddl.sql

So, if admin doesn't know of assumerole permission to revoke it first, user can't be dropped and receiving this error: "SQL Error [55006]: ERROR: user "" cannot be dropped because the user has a privilege on some object"

May 19 '22 05:05 saeedma8

did u solve @saeedma8 ?

Jul 13 '23 21:07 tooptoop4

amazon-redshift-utils amazon-redshift-utils copied to clipboard

ASSUMEROLE permission on IAM roles can't be listed by v_generate_user_grant_revoke_ddl

amazon-redshift-utils
amazon-redshift-utils copied to clipboard