[B! iam] a2ikmã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

a2ikm id:a2ikm

iamã«é–¢ã™ã‚‹a2ikmã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (8)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

GitHub - cookpad/miam: Miam is a tool to manage IAM. It defines the state of IAM using DSL, and updates IAM according to DSL.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session. Dismiss alert
a2ikm 2015/06/16
aws

iam

cli
ãƒªãƒ³ã‚¯
conma.me
This domain may be for sale!
a2ikm 2015/01/27
aws

security

iam
ãƒªãƒ³ã‚¯
IAMã§EC2ã‚’èµ·å‹•ã€åœæ¢ã§ãã‚‹ã‚«ã‚¹ã‚¿ãƒ ãƒãƒªã‚·ãƒ¼ã‚’ä½œã‚‹ - There's an echo in my head
ãƒãƒªã‚·ãƒ¼ã‚¸ã‚§ãƒãƒ¬ãƒ¼ã‚¿ã‚’ã„ã˜ã£ãŸã‚Šæ‰‹ã§ã„ã˜ã£ãŸã‚Šã—ã¦ã€ç‰¹å®šã®ã‚¿ã‚°ã‚’æŒã¤ã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹ã®èµ·å‹•ã€åœæ¢ãŒã§ãã‚‹ã‚«ã‚¹ã‚¿ãƒ ãƒãƒªã‚·ãƒ¼ã‚’ä½œã£ãŸã€‚ // â€» å®Ÿéš›ã¯JSONãªã®ã§ã‚³ãƒ¡ãƒ³ãƒˆã¯è¨˜å…¥ã§ãã¾ã›ã‚“ { "Version": "2012-10-17", "Statement": [ // EC2ã®ã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹ã«å¯¾ã™ã‚‹çŠ¶æ…‹ã®å–å¾—ã‚’è¨±å¯ã™ã‚‹ // ã“ã‚Œã‚‚â†“ã®AllowStopStartã®ã‚ˆã†ã«å¯¾è±¡ã‚’ã‚¿ã‚°ã§çµžã‚Šè¾¼ã‚‚ã†ã¨ã—ãŸã‚‰å‹•ã„ã¦ãã‚Œãªã‹ã£ãŸã®ã§ã€å…¨ã‚µãƒ¼ãƒã«å¯¾ã—ã¦è¨±å¯ã—ãŸ { "Sid": "AllowDescribe", "Effect": "Allow", "Action": [ "ec2:Describe*" ], "Resource": [ "*" ] }, // key=Foo,value=Barã‚¿ã‚°ã‚’æŒã¤ã‚¤ãƒ³ã‚¹ã‚¿ãƒ³ã‚¹ã«å¯¾ã—ã¦èµ·å‹•ã¨åœæ¢ã‚’è¨±å¯ã™ã‚‹ { "Sid": "AllowStopStart",
a2ikm 2015/01/24
aws

ec2

iam

self
ãƒªãƒ³ã‚¯
EC2ã«ç‰¹å®šã®TagãŒã‚ã‚‹Instanceã ã‘ã€APIã‹ã‚‰ã®æ“ä½œã‚’å¯èƒ½ãªIAMãƒ¦ãƒ¼ã‚¶ã®ä½œæˆ - Qiita
Deleted articles cannot be recovered. Draft of this article would be also deleted. Are you sure you want to delete this article?
a2ikm 2015/01/24
aws

ec2

iam
ãƒªãƒ³ã‚¯
ã€æ–°æ©Ÿèƒ½ã€‘IAMãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚’Management Consoleã‹ã‚‰ã‚¯ãƒã‚¹ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã§è‰²ã€…ãªRoleã«ã‚¹ã‚¤ãƒƒãƒã™ã‚‹äº‹ãŒã§ãã‚‹ã‚ˆã†ã«ãªã‚Šã¾ã—ãŸã€‚ | DevelopersIO
ã€æ–°æ©Ÿèƒ½ã€‘IAMãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚’Management Consoleã‹ã‚‰ã‚¯ãƒã‚¹ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã§è‰²ã€…ãªRoleã«ã‚¹ã‚¤ãƒƒãƒã™ã‚‹äº‹ãŒã§ãã‚‹ã‚ˆã†ã«ãªã‚Šã¾ã—ãŸã€‚ ã“ã‚“ã«ã¡ã¯ã€ã›ãƒ¼ã®ã§ã™ã€‚ä»Šæ—¥ã¯IAMã«ã§ããŸãªã‹ãªã‹é¢ç™½ã„æ©Ÿèƒ½ã‚’ã”ç´¹ä»‹ã—ã¾ã™ã€‚IAMã§å½¹å‰²(Role)ã‚’äºˆã‚ä½œã£ã¦ãŠãã€AWS Management Consoleã‹ã‚‰IAMãƒ¦ãƒ¼ã‚¶ãƒ¼ã‚’ãã®Roleã«ã‚¹ã‚¤ãƒƒãƒã•ã›ã‚‹ã“ã¨ã«ã‚ˆã‚Šä¸€ã¤ã®ãƒ¦ãƒ¼ã‚¶ãƒ¼ã§æ§˜ã€…ãªå½¹å‰²ã§ã®ã‚¢ã‚¯ã‚»ã‚¹ãŒå¯èƒ½ã«ãªã‚‹ã€ã¨ã„ã†ã‚‚ã®ã§ã™ã€‚ ã©ã†ã„ã†æ™‚ã«ä½¿ã†ã® æ™®æ®µIAMãƒ¦ãƒ¼ã‚¶ãƒ¼ã«å½¹å‰²ã‚’å‰²ã‚ŠæŒ¯ã‚‹æ™‚ã«ã¯ãã®æ¥å‹™åˆ¥ã§æ¨©é™ã‚’åˆ†ã‘ã¦ã„ã‚‹ã‹ã¨æ€ã„ã¾ã™ã€‚ä¾‹ãˆã°Developer(é–‹ç™ºè€…)ã§ã‚ã‚Œã°é–‹ç™ºç’°å¢ƒã«ã¯è§¦ã‚Œã‚‹ã‘ã‚Œã©ã‚‚æœ¬ç•ªç’°å¢ƒã«ã¯è§¦ã‚Œãªã„ã€é‹ç”¨æ‹…å½“ã§ã‚ã‚Œã°çŠ¶æ…‹ã‚’è¦‹ã‚‹ã“ã¨ã¯ã§ãã‚‹ã‘ã©ã‚‚å¤‰æ›´ã™ã‚‹ã“ã¨ã¯å‡ºæ¥ãªã„ã€ã¿ãŸã„ãªæ„Ÿã˜ã§ã™ã€‚ ã§ã‚‚ä¸€æ™‚çš„ã«æ¨©é™ã‚’ä¸ŽãˆãŸã„å ´åˆãªã©ãŒã‚ã‚‹ã‹ã¨æ€ã„ã¾ã™ã€‚æœ¬ç•ªç’°å¢ƒã«ã‚·ã‚¹ãƒ†ãƒ ã‚’ãƒ‡ãƒ—ãƒã‚¤ã™ã‚‹
a2ikm 2015/01/24
aws

iam
ãƒªãƒ³ã‚¯
IAMãƒãƒ¼ãƒ«å¾¹åº•ç†è§£ ã€œ AssumeRoleã®æ£ä½“ | DevelopersIO
ã•ã¦ã€çš†æ§˜ã¯IAMã«ã©ã®ã‚ˆã†ãªã‚¤ãƒ¡ãƒ¼ã‚¸ã‚’ãŠæŒã¡ã§ã—ã‚‡ã†ã‹ã€‚ãƒ—ãƒã‚¸ã‚§ã‚¯ãƒˆã«é–¢ã‚ã‚‹è¤‡æ•°äººã§1ã¤ã®AWSã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚’æ‰±ã†æ™‚ã€å„ãƒ¡ãƒ³ãƒãƒ¼ã«é…å¸ƒã™ã‚‹ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚’ä½œã‚Œã‚‹æ©Ÿèƒ½ã€‚ãã—ã¦ã€ãã®æ°—ã«ãªã‚Œã°ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚’ã‚°ãƒ«ãƒ¼ãƒ—åˆ†ã‘ã—ã€æ¨©é™ã‚’åŽ³å¯†ã«ç®¡ç†ã§ãã‚‹æ©Ÿèƒ½ã€‚ã¨ã„ã£ãŸã¨ã“ã‚ã‹ã¨æ€ã„ã¾ã™ã€‚ ä¸Šè¨˜ã®ãƒ¦ãƒ¼ã‚¹ã‚±ãƒ¼ã‚¹ã§å‡ºã¦ããŸä¸»ãªã‚¨ãƒ³ãƒ†ã‚£ãƒ†ã‚£ï¼ˆè¦ç´ ï¼‰ã¯Userã¨Groupã§ã™ãã€‚IAMã®Management Consoleã§è¦‹ã¦ã¿ã‚‹ã¨ã€IAMã¯ã“ã‚Œã‚‰ã®ä»–ã«Roleã‚„Identity Providerã¨ã„ã†ã‚¨ãƒ³ãƒ†ã‚£ãƒ†ã‚£ã«ã‚ˆã£ã¦æ§‹æˆã•ã‚Œã¦ã„ã‚‹ã‚ˆã†ã ã€ã¨ã„ã†ã“ã¨ãŒã‚ã‹ã‚Šã¾ã™ã€‚ä»Šæ—¥ã¯Roleã«ãƒ•ã‚©ãƒ¼ã‚«ã‚¹ã‚’å½“ã¦ã¦ã€ãã®å®Ÿæ…‹ã‚’è©³ã—ãç†è§£ã—ã¾ã™ã€‚ IAM Role IAM Roleã‚’ä½¿ã†ã¨ã€å…ˆã«æŒ™ã’ãŸIAMã®ãƒ¦ãƒ¼ã‚¹ã‚±ãƒ¼ã‚¹ã®ä»–ã«ã€ä¸‹è¨˜ã®ã‚ˆã†ãªã“ã¨ãŒå‡ºæ¥ã‚‹ã‚ˆã†ã«ãªã‚Šã¾ã™ã€‚ IAM roles for EC2 instancesã‚’ä½¿ã£ã¦ã¿
a2ikm 2015/01/24
IAM Roleã‚’ä½¿ãˆã°Facebookãªã©ã§èªè¨¼ã—ãŸãƒ¦ãƒ¼ã‚¶ã«å¯¾ã—ã¦æ¨©é™ä»˜ä¸Žã§ãã‚‹ã¨ã‹ã™ã”ã„ãª

aws

iam

authorization
ãƒªãƒ³ã‚¯
AWS ã§ä½œã‚‹ã‚·ã‚¹ãƒ†ãƒ ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£è€ƒ - æ°´æ·±1024m
AWS ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‚’è¤‡æ•°äººã§ä½¿ã£ã¦ã‚·ã‚¹ãƒ†ãƒ ã‚’ä½œã£ã¦ã„ãæ™‚ã«ã€ ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®é¢ã‹ã‚‰ã‚„ã‚‹ã¹ãã“ã¨ã«ã¤ã„ã¦ã€‚ ä¸»ã« Web ã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã‚’æƒ³å®šã—ãŸå†…å®¹ã§ã™ãŒã€ç‰¹ã«æ›¸ã„ã¦ã‚ã‚‹ã“ã¨ã¯ç‰¹æ®Šã§ã¯ãªã„ã¨æ€ã„ã¾ã™ã€‚ å„æ‰€ã® Blog ã«ã‚‚è¨˜äº‹æ›¸ã‹ã‚Œã¦ã¾ã™ãŒæ€ã£ã¦ã„ã‚‹ã“ã¨ã‚’ã¤ã‚‰ã¤ã‚‰ã¨æ›¸ã„ã¦ã¿ã¾ã™ã€‚ ãªã‚“ã‹å¤‰ãªã“ã¨è¨€ã£ã¦ãŸã‚‰ã”æŒ‡æ‘˜ãã ã•ã„ã€‚ å‚è€ƒ: AWSã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãŒæ°—ã«ãªã‚‹ãªã‚‰èªã‚“ã§ãŠãã¹ãAWS ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã®ãƒ™ã‚¹ãƒˆãƒ—ãƒ©ã‚¯ãƒ†ã‚£ã‚¹ - yoshidashingo ã¯ã˜ã‚ã« (AWS ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã¨ IAM ãƒ¦ãƒ¼ã‚¶) å‰æã¨ã„ã†ã‹ç”¨èªžã®è©±ã€‚ AWS ã‚¢ã‚«ã‚¦ãƒ³ãƒˆ ã‚¢ã‚«ã‚¦ãƒ³ãƒˆä½œæˆæ™‚ã®ãƒ¡ãƒ¼ãƒ«ã‚¢ãƒ‰ãƒ¬ã‚¹ã€ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã§ãƒã‚°ã‚¤ãƒ³ã—ã¦ä½¿ã†ãƒ¦ãƒ¼ã‚¶ IAM ãƒ¦ãƒ¼ã‚¶ AWS ã‚¢ã‚«ã‚¦ãƒ³ãƒˆã‹ã‚‰ç™ºè¡Œã§ãã‚‹ã€ãƒ¦ãƒ¼ã‚¶åã¨ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã§ãƒã‚°ã‚¤ãƒ³ã—ã¦ä½¿ã†ãƒ¦ãƒ¼ã‚¶ AWS ã‚¢ã‚«ã‚¦ãƒ³ãƒˆå‘¨ã‚Š AWS ã‚¢ã‚«ã‚¦ãƒ³ãƒˆ (ãƒ«ãƒ¼ãƒˆãƒ¦ãƒ¼ã‚¶) ã§ä½œæ¥ã§ããªã„ã‚ˆã†ã«
a2ikm 2014/09/12
aws

security

iam
ãƒªãƒ³ã‚¯
ã€AWSã€‘EC2ã‚’ãƒªã‚½ãƒ¼ã‚¹ãƒ¬ãƒ™ãƒ«ã§ã‚¢ã‚¯ã‚»ã‚¹è¨±å¯ã—ã¦ã¿ãŸ | DevelopersIO
ã¾ãšã¯ãƒžãƒãƒ¼ã‚¸ãƒ¡ãƒ³ãƒˆã‚³ãƒ³ã‚½ãƒ¼ãƒ«ã®IAMã®ãƒšãƒ¼ã‚¸ã§2ã¤ã®ãƒ¦ãƒ¼ã‚¶ã‚’ä½œæˆã—ã¾ã™ã€‚ ãƒžãƒãƒ¼ã‚¸ãƒ¡ãƒ³ãƒˆã‚³ãƒ³ã‚½ãƒ¼ãƒ«ã«ãƒã‚°ã‚¤ãƒ³ã§ãã‚‹ã‚ˆã†ãƒ‘ã‚¹ãƒ¯ãƒ¼ãƒ‰ã‚‚è¨å®šã—ã¦ãŠãã¾ã—ã‚‡ã†ã€‚ æ¬¡ã«ãƒ¦ãƒ¼ã‚¶Aã®ãƒãƒªã‚·ãƒ¼ã‚’è¨å®šã—ã¾ã™ã€‚ ã‚«ã‚¹ã‚¿ãƒ ãƒãƒªã‚·ãƒ¼ã§ä¸‹è¨˜JSONã‚’ãƒ†ã‚ã‚¹ãƒˆã‚¨ãƒªã‚¢ã«è²¼ã‚Šä»˜ã‘ã¦"Apply Policy"ã—ã¾ã™ã€‚Resourceã§ arn ã‚’æŒ‡å®šã™ã‚‹ã“ã¨ã§ node-A ã®ã¿ã‚’StartInstance/RebootInstance/StopInstance æ“ä½œã§ãã¾ã™ã€‚arnã®"123456789012"ã¯AWSã‚¢ã‚«ã‚¦ãƒ³ãƒˆIDã§ã™ã€‚ï¼ˆ"::"ã§ã‚¢ã‚«ã‚¦ãƒ³ãƒˆIDçœç•¥è¨˜æ³•ãŒä½¿ãˆã‚‹ã‹è©¦ã—ãŸã®ã§ã™ãŒã€çœç•¥ã¯ã§ããªã„ã‚ˆã†ã§ã™ï¼‰ { "Version": "2012-10-17", "Statement": [ { "Action": [ "ec2:describe*" ], "Sid": "Stmt137337989500
a2ikm 2014/03/26
iam

aws

ec2
ãƒªãƒ³ã‚¯
1