Note
Take a note that as usual with with permissions, any change in role permissions is not instant rather it gets applied in near real time so if any permissions changes are performed give some time (in order of few minutes like 2-5 if always safe) to permissions get syn c& applied on role before performing that activity.
Scaling Permissions
Functionality | AWS (IAM Role) | AZURE | GCP |
Increase Node | ec2:GetLaunchTemplateData |
|
|
Decrease Node | ec2:DeleteLaunchTemplate |
|
|
Increase Disk | ec2:CreateVolume |
|
|
Decrease Disk | ec2:DetachVolume |
|
|
Load Balancer/ TargetGroup Entry Addition | elasticloadbalancing:DescribeTargetGroups elasticloadbalancing:RegisterTargets |
|
|
Load Balancer/ Target Group Entry Deletion | elasticloadbalancing:DescribeTargetGroups elasticloadbalancing:DeregisterTargets |
|
|
Target Group health check/probe path modification | “elasticloadbalancing:ModifyTargetGroup “ |