More documentation about IAM permissions needed #351
beacomni
started this conversation in
Ideas / Feature Requests
Replies: 1 comment 1 reply
-
Steampipe currently only supports read queries, not create, update or delete. As such, it works well with read level permissions to your AWS account. The credentials section of the docs for the AWS plugin on the hub recommends In practice, Steampipe needs permissions for whichever tables you'd like to use. So, as an example, you could grant it read only permissions to IAM and nothing else and it would then work for those |
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I'm interested to use steampipe, but would like to know more about minimum IAM permissions needed. For example, it's not obvious to me from the docs whether steampipe can do CUD in CRUD (create, update, delete). I can imagine a scenario where I want a readonly role to 'audit' what I'm querying and not risk someone accidentally doing a
UDPATE
orDELETE
. More documentation on this would be appreciated. Thanks!Beta Was this translation helpful? Give feedback.
All reactions