AWS collector documentation has no IAM policy defined.

hygieia / hygieia-cloud-aws-collector

Hygieia Collector for AWS

https://github.com/capitalone/Hygieia/blob/gh-pages/pages/hygieia/collectors/cloud/aws.md

Apache License 2.0

1 stars 6 forks source link

AWS collector documentation has no IAM policy defined. #2

Open zerolaser opened 5 years ago

zerolaser commented 5 years ago

Currently, Its unclear on what permissions need to be set for the IAM User/role that hygieia uses for collecting information. The documentation lacks this. I haven't seen any error in the logs saying the action cannot be performed as the IAM user/role has no permissions to fetch the data. @Sbrenthughes can you update the documentation and better log errors ?

Sbrenthughes commented 5 years ago

For aws.profile= we just used the aws account name and it would pull the default accesses. Have you tried this?

zerolaser commented 5 years ago

@Sbrenthughes That's not what I meant. What kind of aws IAM policy permissions I need to set for hygieia to pull in data. For example I need to give ec2:Describe to pull in all the instance information. to pull in billing similarly I might need to give billing: or something.