Amazon Route 53 Resolver
(route53resolver)
IAM Changes
Services
2021-11-12
2021-11-12
3 new actions, 1 new resource | 9 updated actions
Additions
Actions
GetResolverConfig
Description:
Grants permission to get the Resolver Config status within the specified resource
Access:
Read
Resources:
Name: resolver-config
Required: Yes
Dependents:
ec2:DescribeVpcs
ListResolverConfigs
Description:
Grants permission to list Resolver Config statuses
Access:
List
Resources:
Name: resolver-config
Required: Yes
Dependents:
ec2:DescribeVpcs
UpdateResolverConfig
Description:
Grants permission to update the Resolver Config status within the specified resource
Access:
Write
Resources:
Name: resolver-config
Required: Yes
Dependents:
ec2:DescribeVpcs
Resources
resolver-config
Arn:
arn:${Partition}:route53resolver:${Region}:${Account}:resolver-config/${ResourceId}
Updates
Actions
AssociateFirewallRuleGroup
Conditions
+ aws:RequestTag/${TagKey}
+ aws:TagKeys
CreateFirewallDomainList
Conditions
+ aws:RequestTag/${TagKey}
+ aws:TagKeys
CreateFirewallRuleGroup
Conditions
+ aws:RequestTag/${TagKey}
+ aws:TagKeys
CreateResolverEndpoint
Conditions
+ aws:RequestTag/${TagKey}
+ aws:TagKeys
CreateResolverQueryLogConfig
Conditions
+ aws:RequestTag/${TagKey}
+ aws:TagKeys
CreateResolverRule
Conditions
+ aws:RequestTag/${TagKey}
+ aws:TagKeys
ListTagsForResource
Resources
+ firewall-domain-list
+ firewall-rule-group
+ firewall-rule-group-association
+ resolver-query-log-config
TagResource
Resources
+ firewall-domain-list
+ firewall-rule-group
+ firewall-rule-group-association
+ resolver-query-log-config
UntagResource
Resources
+ firewall-domain-list
+ firewall-rule-group
+ firewall-rule-group-association
+ resolver-query-log-config