From 6a24e4e5766f2d46df548c875e0091a2b2916c45 Mon Sep 17 00:00:00 2001 From: miztch <8962490+miztch@users.noreply.github.com> Date: Wed, 28 Aug 2024 18:11:27 +0900 Subject: [PATCH] [plugin-aws-ec2-ebs] add actions need to be allowed in the iam policy --- mackerel-plugin-aws-ec2-ebs/README.md | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/mackerel-plugin-aws-ec2-ebs/README.md b/mackerel-plugin-aws-ec2-ebs/README.md index ebe0a8582..531587343 100644 --- a/mackerel-plugin-aws-ec2-ebs/README.md +++ b/mackerel-plugin-aws-ec2-ebs/README.md @@ -14,7 +14,12 @@ mackerel-plugin-aws-ec2-ebs [-instance-id=] [-region=] [-access- * you can set keys by environment variables: `AWS_ACCESS_KEY_ID`, `AWS_SECRET_ACCESS_KEY` (see https://github.com/aws/aws-sdk-go#configuring-credentials) ## AWS IAM Policy -the credential provided manually or fetched automatically with IAM Role, should have the policy that includes an action, `cloudwatch:GetMetricStatistics` and `ec2:DescribeVolumes` +the credential provided manually or fetched automatically with IAM Role, should have the policy that allows actions below. + +* `cloudwatch:GetMetricStatistics` +* `ec2:DescribeInstanceTypes` +* `ec2:DescribeInstances` +* `ec2:DescribeVolumes` ## Example of mackerel-agent.conf