gene1wood/create_security_monkey_trusted_role.py

## create_security_monkey_trusted_role.py
import boto.iam
conn_iam = boto.iam.connect_to_region('universal')
role_name='SecurityMonkeyInstanceProfile'
assume_role_policy_document = '''{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "",
      "Effect": "Allow",
      "Principal": {
        "Service": "ec2.amazonaws.com"
      },
      "Action": "sts:AssumeRole"
    }
  ]
}'''
policy_document = '''{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "ses:SendEmail"
      ],
      "Resource": "*"
    },
    {
      "Effect": "Allow",
      "Action": "sts:AssumeRole",
      "Resource": "*"
    }
  ]
}'''

create_role_result = conn_iam.create_role(role_name=role_name,
                                          assume_role_policy_document=assume_role_policy_document)
put_role_policy_result = conn_iam.put_role_policy(role_name=role_name,
                                                  policy_name="SecurityMonkeyLaunchPerms",
                                                  policy_document=policy_document)
	import boto.iam
	conn_iam = boto.iam.connect_to_region('universal')
	role_name='SecurityMonkeyInstanceProfile'
	assume_role_policy_document = '''{
	"Version": "2012-10-17",
	"Statement": [
	{
	"Sid": "",
	"Effect": "Allow",
	"Principal": {
	"Service": "ec2.amazonaws.com"
	},
	"Action": "sts:AssumeRole"
	}
	]
	}'''
	policy_document = '''{
	"Version": "2012-10-17",
	"Statement": [
	{
	"Effect": "Allow",
	"Action": [
	"ses:SendEmail"
	],
	"Resource": "*"
	},
	{
	"Effect": "Allow",
	"Action": "sts:AssumeRole",
	"Resource": "*"
	}
	]
	}'''

	create_role_result = conn_iam.create_role(role_name=role_name,
	assume_role_policy_document=assume_role_policy_document)
	put_role_policy_result = conn_iam.put_role_policy(role_name=role_name,
	policy_name="SecurityMonkeyLaunchPerms",
	policy_document=policy_document)