Skip to content

DEV Community

Garett Dunn

Posted on Oct 19, 2022 • Originally published at garettmd.com on Aug 20, 2020

AWS EC2 - Limit an Instance's Access to its Own Tags

Here’s a dynamic way to allow an EC2 instance to modify its own tags, but no other instance’s. Enjoy.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": ["ec2:CreateTags", "ec2:DescribeTags"],
      "Resource": "*",
      "Condition": {
        "StringEquals": {
          "aws:ARN": "${ec2:SourceInstanceARN}"
        }
      }
    }
  ]
}

Top comments (0)

Subscribe

Read next

Epic Next JS 14 Tutorial Part 7: Next.js and Strapi CRUD Permissions

Paul Bratslavsky - Apr 17

CDK for Terraform - Quickstart

Arindam Mitra - Apr 17

The Top 7 Modpacks to Install on Your Minecraft Server

Aaron Smith - Apr 17

Auth with Clerk

Njabulo Majozi - Apr 17

Location

United States
Education

B.S., Management Information Systems, Oklahoma State University
Work

Infrastructure Engineer at ComplySci
Joined

Oct 6, 2017

Liberate Orphaned OpenStack Volumes

Brewlette - Discover homebrew packages

#script #homebrew

Unset All Variables Matching a Pattern

#shell #bash #zsh