From 3f68accf6f77944f1154b8e5f7fa17cb544e5552 Mon Sep 17 00:00:00 2001 From: Toni de la Fuente Date: Tue, 26 Nov 2019 09:57:29 +0100 Subject: [PATCH] Added missing file iam/prowler-additions-policy.json --- iam/prowler-additions-policy.json | 106 ++++++++++++++++++++++++++++++ 1 file changed, 106 insertions(+) create mode 100644 iam/prowler-additions-policy.json diff --git a/iam/prowler-additions-policy.json b/iam/prowler-additions-policy.json new file mode 100644 index 00000000000..c706b6f4872 --- /dev/null +++ b/iam/prowler-additions-policy.json @@ -0,0 +1,106 @@ +{ + "Version": "2012-10-17", + "Statement": [ + { + "Action": [ + "apigateway:get*", + "apigatewayv2:get*", + "aws-marketplace:viewsubscriptions", + "batch:listjobs", + "clouddirectory:listappliedschemaarns", + "clouddirectory:listdevelopmentschemaarns", + "clouddirectory:listpublishedschemaarns", + "cloudformation:list*", + "cloudhsm:listavailablezones", + "cloudsearch:list*", + "cloudwatch:get*", + "cloudwatch:list*", + "codebuild:listbuilds*", + "codestar:verify*", + "cognito-identity:listidentities", + "cognito-idp:list*", + "cognito-sync:listdatasets", + "connect:list*", + "datapipeline:getaccountlimits", + "dax:describeclusters", + "dax:describedefaultparameters", + "dax:describeevents", + "dax:describeparametergroups", + "dax:describeparameters", + "dax:describesubnetgroups", + "dax:describetable", + "dax:listtables", + "devicefarm:list*", + "discovery:list*", + "dms:list*", + "dynamodb:describebackup", + "dynamodb:describeglobaltablesettings", + "dynamodb:describelimits", + "dynamodb:describereservedcapacity", + "dynamodb:describereservedcapacityofferings", + "dynamodb:describestream", + "dynamodb:listtagsofresource", + "ec2:get*", + "ecr:describe*", + "ecr:listimages", + "elasticbeanstalk:listavailablesolutionstacks", + "elasticmapreduce:list*", + "elastictranscoder:list*", + "gamelift:list*", + "glacier:list*", + "importexport:listjobs", + "lex:getbotaliases", + "lex:getbotchannelassociations", + "lex:getbots", + "lex:getbotversions", + "lex:getintents", + "lex:getintentversions", + "lex:getslottypes", + "lex:getslottypeversions", + "lex:getutterancesview", + "lightsail:getblueprints", + "lightsail:getbundles", + "lightsail:getinstancesnapshots", + "lightsail:getkeypair", + "lightsail:getregions", + "lightsail:getstaticips", + "lightsail:isvpcpeered", + "machinelearning:describe*", + "mobilehub:listavailablefeatures", + "mobilehub:listavailableregions", + "mobilehub:listprojects", + "mobiletargeting:getapplicationsettings", + "mobiletargeting:getcampaigns", + "mobiletargeting:getimportjobs", + "mobiletargeting:getsegments", + "opsworks-cm:describe*", + "opsworks:describe*", + "polly:describe*", + "polly:list*", + "redshift:viewqueriesinconsole", + "route53domains:list*", + "s3:listbucket", + "sdb:list*", + "secretsmanager:listsecretversionids", + "servicecatalog:list*", + "ses:list*", + "ses:sendemail", + "sns:list*", + "sqs:listqueuetags", + "ssm:listassociations", + "states:listactivities", + "support:describe*", + "swf:list*", + "tag:gettagkeys", + "trustedadvisor:describe*", + "waf-regional:list*", + "waf:list*", + "workdocs:describeavailabledirectories", + "workdocs:describeinstances", + "workmail:describe*" + ], + "Effect": "Allow", + "Resource": "*" + } + ] +} \ No newline at end of file