Create a gist now

Instantly share code, notes, and snippets.

Policy for IAM self service
{
"Statement": [
{
"Action": [
"iam:*Password*",
"iam:*AccessKey*",
"iam:*SigningCertificate*",
"iam:*MFADevice*",
"iam:UpdateLoginProfile"
],
"Effect": "Allow",
"Resource": [
"arn:aws:iam::ACCOUNT#:user/${aws:username}"
]
},
"Action": [
"iam:*MFADevice*"
],
"Effect": "Allow",
"Resource": [
"arn:aws:iam::ACCOUNT#:mfa/${aws:username}"
]
}
]
}
@brandongalbraith

Typo at Line 16: Needs a '{' character:

{
    "Statement": [
        {
            "Action": [
                "iam:*Password*",
                "iam:*AccessKey*",
                "iam:*SigningCertificate*",
                "iam:*MFADevice*",
                "iam:UpdateLoginProfile"
            ],
            "Effect": "Allow",
            "Resource": [
                "arn:aws:iam::ACCOUNT#:user/${aws:username}"
            ]
        },
        {
            "Action": [
                "iam:*MFADevice*"
            ],
            "Effect": "Allow",
            "Resource": [
                "arn:aws:iam::ACCOUNT#:mfa/${aws:username}"
            ]
        }
    ]
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment