Skip to content
This repository has been archived by the owner on Dec 10, 2024. It is now read-only.

Required roles/permissions to install the icp/openshift in AWS #38

Open
udhayas opened this issue Jan 22, 2021 · 3 comments
Open

Required roles/permissions to install the icp/openshift in AWS #38

udhayas opened this issue Jan 22, 2021 · 3 comments

Comments

@udhayas
Copy link

udhayas commented Jan 22, 2021

Hi team,

Could you please confirm us on the complete list of permissions policies required to install/configure ICP on AWS successfully and the reason as well.

Thank you

-udhay

@shaithal
Copy link
Contributor

https://docs.openshift.com/container-platform/4.3/installing/installing_aws/installing-aws-account.html#installation-aws-permissions_installing-aws-account
Since we use IPI based OCP installation, please refer the above link for IAM roles and permission.

@udhayas
Copy link
Author

udhayas commented Jan 25, 2021

Thanks for the response shaithal.

the permissions and roles mentioned in the link are a concern from security perspective, is there a bare minimum role that can be used for the IPI. If not, then can you confirm that once the installation is complete the VM is destroyed at the end of installation and the roles created are also removed

Thanks
Udhay

@shaithal
Copy link
Contributor

For IPI installation, it requires a user with administrative privilege and we are creating it as part of quickstart.
From quickstart perspective all the resources created by Cloudformation will be deleted when the stack deletion happens.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants