Questions tagged [amazon-iam]
AWS Identity and Access Management (IAM) is an access control service for Amazon Web Services. Tag questions about using the AWS CLI, writing JSON for IAM, and using IAM SDKs.
amazon-iam
5,624
questions
0
votes
0
answers
7
views
Achieving additive permissions with IAM Identity Center in AWS
I'm trying to migrate users from IAM to IAM Identity Center. We use user groups on IAM heavily to do RBAC on our AWS account. When a user wants more permissions, we will create an IAM policy, create a ...
0
votes
0
answers
10
views
Confluent-Kafka: no broker available for coordinator query: intervaled in state query-coord
I am using python-confluent-kafka to create a producer.
The Kafka cluster is on MSK 3.7.x KRaft with IAM enabled and TLS enabled, both within the cluster and between clients and brokers.
Any ideas on ...
0
votes
1
answer
25
views
Access denied 403 Error while uploading to S3 bucket in production ECS Fargate (Working locally)
I am getting AccessDenied: Access Denied while upload files to my s3 bucket. But everything is working perfectly locally.
This is the error I am seeing in my cloudwatch
AccessDenied: Access Denied
api
...
0
votes
1
answer
9
views
RDS Permissions through IAM user
My RDS user lacks the permissions to create schema's. Is it possible to grant this user these permissions through an IAM policy instead of granting me these permissions via the Database administrator? ...
0
votes
0
answers
12
views
Serverless deployment to new stage fails with non existent IAM Policy error
I have a serverless definition, that is working, when deploying to existing stages:
service: appcode-graphql
frameworkVersion: "3"
variablesResolutionMode: 20210326
useDotenv: true
...
0
votes
1
answer
18
views
Can I grant access to another AWS account only through Identity and trust policy
I have an AWS account A from which I want to grant access to another AWS account B, I have created a role in my account A giving the identity access to my bucket in account A, here's the role identity ...
0
votes
0
answers
11
views
How can I connect aws instance running ssh on other port using aws ec2 connect
I need to connect to aws instance using aws ec2 connect, but it is using port other than 22. While connecting getting access denied. Also is there any way to recover pem
I am getting error while ...
0
votes
1
answer
21
views
How can i connect my springboot micro service to an MSK with IAM authentiaction?
Im trying to connect my project with this configuration
@Bean
public KafkaAdmin kafkaAdmin() {
Map<String, Object> configs = new HashMap<>();
configs.put(...
0
votes
0
answers
14
views
Unable set up OpenSearch manual snapshots with the master user from an "internal user database"
We have an OpenSearch domain with manual snapshots, it was working fine until we enable fine grained access control with master user from "Internal user database".
This is the related CDK ...
0
votes
0
answers
7
views
AWS Appsync Data Source and Web Identities
So, I have a setup composed by cognito, appsync and dynamoDB. Users authenticate through Cognito, where through claims they assume an IAM role given by the group they're in (let's call this ...
0
votes
0
answers
17
views
Apache Spark On EKS master, failed to connect S3 using IAM role
We are running our Spark application on EKS as master. And trying to access(read/write) files in S3 bucket using IAM role.
We have configured SA and attached IAM role to that Service account using ...
0
votes
0
answers
29
views
Microsoft Entra SSO integration with AWS IAM Identity Center, where AWS is the Identity Source
I spent a lot of time looking for the intergation between AWS and Entra, where AWS is the identity source. I want AWS ITAM Identity Center to manage users and Entra to have SAML federation with AWS, ...
0
votes
1
answer
54
views
Error: Not authorized to perform sts:AssumeRoleWithWebIdentity during OIDC when a PR get merged into main
I'm trying to assume a role of AWS using OIDC in my github action file but it's saying "Error: Not authorized to perform sts:AssumeRoleWithWebIdentity" When we merge PR into main but if I ...
-1
votes
1
answer
43
views
How to create aws-ebs-csi-driver with eks_blueprints_addons by Terraform?
I created AWS EBS CSI Driver addon with eks_blueprints_addons by Terraform:
module "eks_cluster" {
source = "terraform-aws-modules/eks/aws"
version = "~> ...
0
votes
0
answers
24
views
How to encrypt my key when persisting it to my AWS management secrets?
I stored in my AWS Management Secrets my secret key to my JWT Token that i'm using for the Log in of my app.
Also , i'm connecting to an IAM account where i can retrieve my secret key for the JWT ...