Monday, April 15, 2024
HomeSoftware EngineeringMethods to Repair “is just not licensed to create managed-rule” in AWS...

Methods to Repair “is just not licensed to create managed-rule” in AWS Step Features


If in case you have ever acquired the next error is just not licensed to create managed-rule when working a Step Operate by Terraform’s AWS Supplier, then you’ll have jumped by many various hoops making an attempt to determine what was unsuitable.

What’s the Fast Repair?

Open the function in IAM and fasten the CloudWatchEventsFullAccess AWS managed coverage to the permissions insurance policies.

Want Extra Data?

IAM Function Principal Coverage required to AssumeRole

{
    "Model" : "2012-10-17",
    "Assertion" : [
        {
        "Effect" : "Allow",
        "Principal" : {
            "Service" : "states.amazonaws.com"
        },
        "Action" : "sts:AssumeRole"
        }
    ]
}

IAM Function Coverage GetEvents For StepFunctions Execution Rule

{
    "Impact": "Enable",
    "Motion": [
        "events:PutTargets",
        "events:PutRule",
        "events:DescribeRule"
    ],
    "Useful resource": [
        "arn:aws:events:[[region]]:[[account]]:rule/StepFunctionsGetEventsForStepFunctionsExecutionRule"
    ]
}

IAM Function Coverage beneath StepFunctions CloudFormation

- Impact: Enable
  Motion:
  - occasions:PutTargets
  - occasions:PutRule
  - occasions:DescribeRule
  Useful resource: 
  - !Sub arn:${AWS::Partition}:occasions:${AWS::Area}:${AWS::AccountId}:rule/StepFunctionsGetEventsForStepFunctionsExecutionRule

If you might want to restrict it to a useful resource, then StepFunctionsGetEventsForStepFunctionsExecutionRule is the one you’re in search of!

RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Most Popular

Recent Comments