AWS Systems Manager (ssm)

2022-06-14

2 new actions, 2 new conditions | 26 updated actions, 3 updated resources

Additions

    Actions
  • GetCalendar [permission only]
    • Description:  Grants permission to view details of a specific calendar
    • Access:  Read
    • Resources: 

      Name: document

      Required: Yes

  • PutCalendar [permission only]
    • Description:  Grants permission to create/edit a specific calendar
    • Access:  Write
    • Resources: 

      Name: document

      Required: Yes

    Conditions
  • ssm:AutoApprove
    • Description:  Filters access by verifying that a user has permission to start Change Manager workflows without a review step (with the exception of change freeze events)
    • Type:  String
  • ssm:resourceTag/${TagKey}
    • Description:  Filters access based on a tag key-value pair assigned to the Systems Manager resource
    • Type:  String

Updates

    Resources
  • document
      Conditions
    • + ssm:DocumentCategories
    • - ssm:resourceTag/tag-key
  • instance
      Conditions
    • + ssm:resourceTag/${TagKey}
    • - ssm:resourceTag/tag-key
  • opsmetadata
      Conditions
    • + ssm:resourceTag/${TagKey}
    • - ssm:resourceTag/tag-key