Jump to content

All Activity

This stream auto-updates     

  1. Earlier
  2. Krishna

    AWS - custom deny message

    AWS doesn't allow you to perform or push custom messages at IAM level. If a user has access to any of the services then he will be authorised to enter otherwise user cannot enter and a message will be thrown which is built in. There are some limitations with this. Even we had same kind of issues with lambda and other Systems manager. The only thing that you can do is to educate them in those scenarios. Let me know if you need any help. 🙂 ~Krishna
  3. soujanya

    AWS - custom deny message

    Sometime AWS policies evaluate to an authorization deny message, however, our employees don't always understand the reason why. In that cases, displaying a custom message would help a lot. For example, I have a policy for technical support users which AWS Technical gives them the ability to attach policies to other users, except policies that allow the users to act on EC2 production instances. What I want to do is to display a message like "Assigning permissions to operate upon EC2 instances is not allowed, please contact XXX if you need to do that anyway". Is that possible?
  4. Chan you just check the VPC Settings i mean the Subnet associated with the EC2 instance and also the NACL's, Natgateway IP, Internet gateway etc. The second thing would be the Linux version upgrade and also try to run that using run command if you were not able to SSH. Before doing it assign a SSM Agent policy. Regards, Krishna
  5. My ec2 server (in Singapore) runs over 1 year and it was fine until yesterday. It is suddenly crashed (very likely): all applications run on that server are all stopped and I can't ssh login, ping also fail, even after I reboot it from AWS web console. In the web console, the server status is normal, shows "running" with a green light. But I just can't do anything on it! It never happened in the past 15 months. And AWS Technical doesn't allow me to request a technical support. What should I do? I'm sure my security groups has setup correctly because I didn't change it at all.
  1. Load more activity