Open serialp opened 3 years ago
Hello @serialp !
I believe we might need to know which policies that role has, because it might be lacking the DescribeRegions
permissions in order to complete the task.
If you can find any way to add those permissions, it'd be just fine.
Any comments on this @0xdabbad00 ?
Something is wrong with their privileges. @serialp You could modify the collect.yaml
to move the request for sts
get-caller-identity
to the top of the file so that will be called first and you can debug that you are working from the correct IAM role that you thought you were.
Thanks a lot guys, @w0rmr1d3r the role has ReadOnlyAccess Policies (+ Security and Audit policies required for cloudmapper). But for now I just created a specific user with the required policies to run the report which run fine.
@0xdabbad00 Thanks will try it. Do you guys have any suggestion on how to export the Diagram in png or others than json format ? (didn't yet find a tool that could better represent a diagram with more several vpcs and subnets in a single region)
I am running cloudmapper on docker and i got this issue:
Since, I don't have any right on
my_aws_user_account
I am assuming role to perform this task. AM I doing everything right ?Thank you for your help !