AWS Classroomnotes 19/Mar/2023

Activity 4: Create an IAM Policy to Start and Stop Ec2 instances

  • Create an IAM Policy to Start and Stop Ec2 instances, if the ec2 instance is in ap-south-1 region and in other regions only give read permissions
  • Every resource created in AWS will have unique ARN
  • ARN for EC2 arn:${Partition}:ec2:${Region}:${Account}:instance/${InstanceId}
  • To fill this Refer Here
  • In our case 
arn:aws:ec2:ap-south-1:*:instance/*

Activity 5: Create an IAM Policy to allow user to delete bucket if the region is only us-west-2

  • Condition keys based on Actions and then there are global condition keys Refer Here
  • We have condition block
  • Refer Here for changes
  • Exercise: Create an IAM policy to give full access to ec2 in all regions but oregon
Published
Categorized as Uncategorized Tagged

By continuous learner

devops & cloud enthusiastic learner

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Please turn AdBlock off
Animated Social Media Icons by Acurax Responsive Web Designing Company

Discover more from Direct DevOps from Quality Thought

Subscribe now to keep reading and get access to the full archive.

Continue reading

Exit mobile version
%%footer%%