clw111
commented
1 year ago Fixed this issue by adding AdministratorAccess policy to our existing role.
Closed clw111 closed 1 year ago
clw111
commented
1 year ago Fixed this issue by adding AdministratorAccess policy to our existing role.
Failed to create QSDeploymentID, which seems to be related to insufficient permissions from the IAM role used on page 2 when creating the stack in an existing VPC. I do not see a list of required permissions for creating the stack, so I built one manually based on the Citrix documentation for managing, creating, and deleting VMs. Added iam:CreateRole, iam:CreateUser, iam:DeleteRole, iam:DeleteUser, and iam:PassRole to troubleshoot. If I specify "arn:aws:iam:::role/" as the resource it errors in the same place as if I specify "*" as the resource.
Could someone please share or direct me to a list of required permissions for the IAM role creating the stack?
Thank you.