Security Modules 0.74.2Last updated in version 0.69.2
View Source
Release Notes
Custom IAM Entity
This Gruntwork Terraform Module creates an IAM group and/or role and attaches a provided set of IAM managed policies to the group. This can be used in conjunction with the iam-groups, cross-account-iam-roles, and saml-iam-roles modules which create a set of groups and roles with smart defaults. Use this module to easily create IAM groups and roles with a defined set of permissions.
Requirements
- You will need to be authenticated to AWS with an account that has
iam:*
permissions.
Instructions
Check out the custom-iam-entity example for a working example.
Resources Created
- IAM group - (optional) an IAM group with the provided name and attaches each of the requested policies.
- IAM role - (optional) an IAM role with the provided name and attaches each of the requested policies.
If neither role nor group are provided, this module does nothing.
Resources NOT Created
- IAM users - This module does not create any IAM Users, nor assign any existing IAM Users to IAM Groups. You can use the iam-users module to create users.
- IAM policies - This module only attaches policies by ARN or by name. It does not create any new policies.