What policies or rights to be provided for a user with which we will run the terraform scripts?

uday kiran

2/27/23, 4:39 PM

We are creating eks clusters and other resources from terraform.

What are the policies to be given to that user account?

0 + 0

amazon-web-services

terraform

Score:2

Server

Lutz Willek

2/27/23, 5:08 PM

The answer is: it fully depends on your needs.

If you're running Terraform on CodeBuild or ECS and have configured an IAM Task Role, Terraform will use the container's Task Role.

If you're running Terraform on EKS and have configured IAM Roles for Service Accounts (IRSA), Terraform will use the pod's role.

See AWS Identity and Access Management Documentation for always up to date information and test your policies with the help of IAM policy simulator.

However, from my experience it is much easier to use AWS managed policies than to write policies yourself - see AWS managed policies for Amazon Elastic Kubernetes Service for an overview.

0 + 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: What policies or rights to be provided for a user with which we will run the terraform scripts?

TH: นโยบายหรือสิทธิ์ใดบ้างสำหรับผู้ใช้ที่เราจะเรียกใช้สคริปต์ Terraform

RO: Ce politici sau drepturi trebuie furnizate unui utilizator cu care vom rula scripturile terraform?

RU: Какие политики или права должны быть предоставлены пользователю, с которым мы будем запускать скрипты terraform?

VI: Những chính sách hoặc quyền nào sẽ được cung cấp cho người dùng mà chúng tôi sẽ chạy các tập lệnh địa hình?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.