Skip to main content
McAfee Enterprise MVISION Cloud

AWS Required Permissions for POP IAM role

 

AmazonVPCFullAccess 

 

AmazonElasticFileSystemFullAccess 

 

AmazonVPCFullAccess 

 

cwppPolicy 

"autoscaling:DescribeAutoScalingGroups",  

"autoscaling:DescribeLaunchConfigurations",  

"autoscaling:DescribeTags",  

"ec2:DescribeInstances",  

"ec2:DescribeRegions",  

"ec2:DescribeRouteTables",  

"ec2:DescribeSecurityGroups",  

"ec2:DescribeSubnets",  

"ec2:DescribeVolumes",  

"ec2:CreateSecurityGroup",  

"ec2:CreateTags",  

"ec2:CreateVolume",  

"ec2:ModifyInstanceAttribute",  

"ec2:ModifyVolume",  

"ec2:AttachVolume",  

"ec2:AuthorizeSecurityGroupIngress",  

"ec2:CreateRoute",  

"ec2:DeleteRoute",  

"ec2:DeleteSecurityGroup",  

"ec2:DeleteVolume",  

"ec2:DetachVolume",  

"ec2:RevokeSecurityGroupIngress",  

"ec2:DescribeVpcs",  

"elasticloadbalancing:AddTags",  

"ec2:CreateLaunchTemplate",  

"ec2:GetLaunchTemplateData",  

"ec2:DescribeLaunchTemplates",  

"ec2:DescribeLaunchTemplateVersions",  

"ec2:ModifyLaunchTemplate",  

"autoscaling:*",  

"s3:*",  

"ec2:CreateLaunchTemplateVersion",  

"elasticloadbalancing:AttachLoadBalancerToSubnets",  

"elasticloadbalancing:ApplySecurityGroupsToLoadBalancer",  

"elasticloadbalancing:CreateLoadBalancer",  

"elasticloadbalancing:CreateLoadBalancerPolicy",  

"elasticloadbalancing:CreateLoadBalancerListeners",  

"elasticloadbalancing:ConfigureHealthCheck",  

"elasticloadbalancing:DeleteLoadBalancer",  

"elasticloadbalancing:DeleteLoadBalancerListeners",  

"elasticloadbalancing:DescribeLoadBalancers",  

"elasticloadbalancing:DescribeLoadBalancerAttributes",  

"elasticloadbalancing:DetachLoadBalancerFromSubnets",  

"elasticloadbalancing:DeregisterInstancesFromLoadBalancer",  

"elasticloadbalancing:ModifyLoadBalancerAttributes",  

"elasticloadbalancing:RegisterInstancesWithLoadBalancer",  

"elasticloadbalancing:SetLoadBalancerPoliciesForBackendServer",  

"elasticloadbalancing:AddTags",  

"elasticloadbalancing:CreateListener",  

"elasticloadbalancing:CreateTargetGroup",  

"elasticloadbalancing:DeleteListener",  

"elasticloadbalancing:DeleteTargetGroup",  

"elasticloadbalancing:DescribeListeners",  

"elasticloadbalancing:DescribeLoadBalancerPolicies",  

"elasticloadbalancing:DescribeTargetGroups",  

"elasticloadbalancing:DescribeTargetHealth",  

"elasticloadbalancing:ModifyListener",  

"elasticloadbalancing:ModifyTargetGroup",  

"elasticloadbalancing:RegisterTargets",  

"elasticloadbalancing:DeregisterTargets",  

"elasticloadbalancing:SetLoadBalancerPoliciesOfListener",  

"iam:PassRole",  

"iam:GetRole",  

"kms:DescribeKey" 

  • Was this article helpful?