ec2:DescribeNetworkInterfaces ec2:DescribeSubnets ec2:DescribeVpcs AddTagsToResource 授予为指定的 Amazon Directory Services 目录添加或覆盖一个或多个标签的权限 标记 directory* ec2:CreateTags aws:RequestTag/${TagKey} aws:TagKeys AuthorizeApplication[仅权限] 授予授权您的 AWS 目录应用程序的权限 ...
ec2:CreateNetworkInterface ec2:DescribeNetworkInterfaces ec2:DeleteNetworkInterface 当你在配置 VPC 连接时,AWS Lambda 服务还会使用你的权限来验证网络资源,所以在配置 Lambda 连接到 VPC 时,那个操作者用户也需要拥有如下权限。 用户权限: ec2:DescribeSecurityGroups ec2:DescribeSubnets ec2:DescribeVpcs 上面的截图,显...
EC2InstanceAmiId: Type: AWS::SSM::Parameter::Value<AWS::EC2::Image::Id> Default: '/aws/service/ami-amazon-linux-latest/amzn2-ami-hvm-x86_64-gp2' Environment: Type: String AllowedValues: - dev - prod Default: dev MyKeyPair: Description: Amazon EC2 Key Pair Type: AWS::EC2::KeyPair:...
describe-local-gateway-virtual-interface-groups describe-local-gateway-virtual-interfaces describe-local-gateways describe-locked-snapshots describe-mac-hosts describe-managed-prefix-lists describe-moving-addresses describe-nat-gateways describe-network-acls ...
ec2:DescribeNetworkInterfaces ec2:DeleteNetworkInterface 这些权限(permission)已经包含在AWS managed policy “AWSLambdaVPCAccessExecutionRole”中。 当我们在创建或者修改Lambda函数,如果需要对VPC配置进行修改,那么我们的AWS用户需要有以下权限(Lambda服务使用我们的AWS用户权限对函数的VPC配置进行修改)。
"ec2:CreateNetworkInterface", "ec2:DescribeNetworkInterfaces", "ec2:DetachNetworkInterface", "ec2:DeleteNetworkInterface" ], "Resource": "*" } ] } 创建Lambda 函数 “sapapi-proxy”, 并赋予刚刚创建的 IAM 角色; 配置Lambda 函数访问的 VPC 信息,包括子网和安全组(注意:AWS 要求至少选择 2 个子网以在...
"ec2:DescribeAvailabilityZones","ec2:DescribeInternetGateways","ec2:DescribeVpcs","ec2:DescribeVpcPeeringConnections","ec2:DescribeSubnets","ec2:DescribeSecurityGroups","ec2:DescribeInstances","ec2:DescribeNetworkInterfaces","ec2:DescribeTags","ec2:GetCoipPoolUsage","ec2:DescribeCoipPools","elastic...
ec2:DescribeNetworkInterfaces ec2:DescribeVpcs ec2:DeleteNetworkInterface ec2:DescribeSubnets ec2:DescribeSecurityGroups The event payload for the Lambda function contains an array of records. Each array item contains details of the topic and Kafka partition identifier, together with a timestamp andbase64...
"ec2:DescribeNetworkInterfaces","ec2:DescribeTags","ec2:GetCoipPoolUsage","ec2:DescribeCoipPools","elasticloadbalancing:DescribeLoadBalancers","elasticloadbalancing:DescribeLoadBalancerAttributes","elasticloadbalancing:DescribeListeners","elasticloadbalancing:DescribeListenerCertificates","elasticloadbalancing:Describe...
ec2:DescribeNetworkInterfaces(needed only if task have public IPs) Then, you can configure Hazelcast in one of the following manners. Please note that10.0.*.*value depends on your VPC CIDR block definition. XML Configuration <hazelcast> <network> <join> <multicastenabled="false"/> <awsenabled...