I have the following resource policy on a Secrets Manager secret { "Version" : "2012-10-17", "Statement" : [ { "Sid" : "rp1", "Effect" : "Allow", "Principal" : { "AWS" : ["*"] }, "Action" : [ "secretsmanager:UpdateSecret", "secretsmanager:GetSecretValue" ], "Resource" :…
How do i grant a customer read/write access to a specific S3 bucket in my AWS account without giving them access to any other buckets or resources? They should be able to access this bucket from a powershell script in…
I'm trying to add this as an inline policy, with arn for user (principle) and arn for bucket (resource). { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Principal": { "AWS": "arn:aws:iam::00000000:user/name" }, "Action": ”s3:ListBucket” "Resource": "arn:aws:s3:::bucket name" } ] }…
I several lambda functions on my account to be able to access a secret. (I cannot use identity policies, don't ask why) I am following this example from the official documentation so I am creating this resource based policy {…
I am attaching the following resource policy to an SM secret { "Version" : "2012-10-17", "Id" : "AllowAccessToSecretValue", "Statement" : [ { "Sid" : "AllowLambdaAccess", "Effect" : "Allow", "Principal" : { "Service" : "lambda.amazonaws.com" }, "Action" : [ "secretsmanager:GetSecretValue", "secretsmanager:UpdateSecret"…
I have a highly multi-account environment and Users that are assigned multiple permission sets per account. e.g. Bob has both Administrator and ReadOnly for Test and Prod accounts. Say I want to only remove Bob's Administrator access for the Prod…
the goal I'm trying to follow https://docs.aws.amazon.com/IAM/latest/UserGuide/tutorial_cross-account-with-roles.html to have a single IAM user capable of accessing both my gov and commercial account. I chose to have a user in the gov account be the principal capable of assuming the role…
I am pretty baffled and I don't know what is going on with this one. I'm using DuckDB to query parquet files in an s3 bucket. import pandas as pd import duckdb query = """ INSTALL httpfs; LOAD httpfs; SET…
I have created and set the correct policies to allow me to view the billing page as seen in the following AWS docs page: https://docs.aws.amazon.com/IAM/latest/UserGuide/tutorial_billing.html?icmpid=docs_iam_console#tutorial-billing-step1 and I have tried using the standard policies AWS gives you also but to no…
I'm trying to setup my aws cli. I downloaded it and everything worked. Now I wanted to log in from my powershell script. Set-AWSCredentials –AccessKey key-name –SecretKey key-name Because I don't have any users at the moment I had to…