TechQA.

Cross account access to AWS resources

218 views Asked by At

I have access to two AWS accounts, training and staging. Staging account holds all hosted zones, IAM roles; I want to grant access to training account so it can access a resource in Route53. I have created an IAM policy as below:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "route53:ChangeResourceRecordSets"
      ],
      "Resource": [
        "arn:aws:route53:::hostedzone/*"
      ]
    },
    {
      "Effect": "Allow",
      "Action": [
        "route53:ListHostedZones",
        "route53:ListResourceRecordSets"
      ],
      "Resource": [
        "*"
      ]
    }
  ]
}

Then I created an IAM role and attached above policy using "Another AWS account" option inserting training account ID, but I am still not able to list any hosted zones.

I am not sure what exactly I am missing here.

amazon-web-services amazon-iam amazon-route53 external-dns
Original Q&A
0

There are 0 answers

Related Questions in AMAZON-WEB-SERVICES

Related Questions in AMAZON-IAM

Related Questions in AMAZON-ROUTE53

Related Questions in EXTERNAL-DNS

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions