Thursday, 22 February 2018

Amazon Elastic Cloud Compute AutoScaling has added support for Service Linked roles

Amazon EC2


Amazon Elastic Cloud Compute Auto Scaling supports for utilizing AWS Identity and Access Management Service Linked Roles. This is a new type of role that will enable to conveniently authorize permission to Amazon Web Services. Elastic Cloud Compute Auto Scaling Service Linked roles are already defined by the Elastic Cloud Compute Auto Scaling and it contains all the permission that the service will need to call other AWS service on your behalf. 

Some of the actions that Elastic Cloud Compute Auto Scaling performs on your behalf are that it terminates and launches Elastic Cloud Compute Instance or it creates Amazon CloudWatch Alarms when you generate a target tracking scaling policy. 
Elastic Cloud Compute Auto Scaling will automatically build a default EC2 Auto Scaling Service linked role in the account if the users that don’t exist when the EC2 Auto Scaling group is created. You can also build a service linked role other than the default via IAM and pass it to the Elastic Cloud Compute Auto Scaling Group. You cannot delete the service linked role unlike the normal IAM role if it is still in use by the Elastic Auto Scaling groups. 

This will protect the user from inadvertently revoking permissions required by the Elastic Cloud Compute Auto Scaling. It will also help the user with the auditing requirements and monitor the AWS CloudTrial by logging actions by the Elastic Cloud Compute Auto Scaling again the specified Service Linked role. 

No comments:

Post a Comment

AWS CodeGuru Elevating Code Security

  Security and code quality are paramount in today’s fast-paced software development landscape. As the cornerstone of DevSecOps, Static Appl...