Permission to AssumeRole for useraccount

Asked Aug 16 '23 at 05:31

Active Aug 16 '23 at 05:31

Viewed 21 times

I set up some resources by cdk.

After first setup finished, some permisions around role will be removed.

Now I bumped into this error when updating.

current credentials could not be used to assume 'arn:aws:iam::3144113XXXXX:role/cdk-hnb659fds-file-publishing-role-3144113XXXXX-ap-northeast-1', but are for the right account. Proceeding anyway.

I think this means that user accounts needs to assume cdk-hnb659fds-file-publishing-role-3144113XXXXX-ap-northeast-1?

And this is related with sts:AssumeRole?

However I could not find the iems in polycies including sts:AssumeRole.

What policy should I add?

asked Aug 16 '23 at 05:31

whitebear

11,200
24
114
237

You will need to add permission to assume the role to the credentials from which you are trying to execute cdk deploy as suggested [here](https://stackoverflow.com/a/68898448/12326605) – Arpit Jain Aug 16 '23 at 06:41

Permission to AssumeRole for useraccount

0 Answers0