aws-copr role cannot list encryption key User: arn:aws:sts::125523088429:assumed-role/aws-copr/msuchy is not authorized to perform: kms:ListAliases on resource: *
When I try to set-up a volume in AWS EC2 with encryption (for copr-keygen) I get this error. Not sure if there are some - but it would be nice to have some general encryption key set up (or I need rights to create it too).
Metadata Update from @kevin: - Issue priority set to: Waiting on Assignee (was: Needs Review) - Issue tagged with: aws
ok. I have attached a policy thats a first cut at allowing access to kms for keys.
Once you create your keys I can restrict things down so you only have access to those specific keys, but I can't do that until they are created.
@msuchy is this working now?
Yes, it works now. No more errors. Thank you.
Metadata Update from @msuchy: - Issue close_status updated to: Fixed - Issue status updated to: Closed (was: Open)
Log in to comment on this ticket.