Amazon EC2 (ec2)

2025-05-14

6 new actions, 1 new resource | 1 updated action, 1 updated resource

Additions

    Actions
  • CreateLocalGatewayVirtualInterface
    • Description:  Grants permission to create a local gateway virtual interface
    • Access:  Write
    • Resources: 

      Name: local-gateway-virtual-interface

      Required: Yes

      Name: local-gateway-virtual-interface-group

      Required: Yes

      Name: outpost-lag

      Required: Yes

    • Conditions: 

      aws:RequestTag/${TagKey}

      aws:TagKeys

      aws:ResourceTag/${TagKey}

      ec2:ResourceTag/${TagKey}

      ec2:Region
    • Dependents: 

      ec2:CreateTags
  • CreateLocalGatewayVirtualInterfaceGroup
    • Description:  Grants permission to create a local gateway virtual interface group
    • Access:  Write
    • Resources: 

      Name: local-gateway

      Required: Yes

      Name: local-gateway-virtual-interface-group

      Required: Yes

    • Conditions: 

      aws:ResourceTag/${TagKey}

      ec2:ResourceTag/${TagKey}

      aws:RequestTag/${TagKey}

      aws:TagKeys

      ec2:Region
    • Dependents: 

      ec2:CreateTags
  • DeleteLocalGatewayVirtualInterface
    • Description:  Grants permission to delete a local gateway virtual interface
    • Access:  Write
    • Resources: 

      Name: local-gateway-virtual-interface

      Required: Yes

    • Conditions: 

      aws:ResourceTag/${TagKey}

      ec2:ResourceTag/${TagKey}

      ec2:Region
  • DeleteLocalGatewayVirtualInterfaceGroup
    • Description:  Grants permission to delete a local gateway virtual interface group
    • Access:  Write
    • Resources: 

      Name: local-gateway-virtual-interface-group

      Required: Yes

    • Conditions: 

      aws:ResourceTag/${TagKey}

      ec2:ResourceTag/${TagKey}

      ec2:Region
  • DescribeOutpostLags
    • Description:  Grants permission to describe Outpost LAGs
    • Access:  List
    • Conditions: 

      ec2:Region
  • DescribeServiceLinkVirtualInterfaces
    • Description:  Grants permission to describe service link virtual interfaces
    • Access:  List
    • Conditions: 

      ec2:Region
    Resources
  • outpost-lag
    • Arn:  arn:${Partition}:ec2:${Region}:${Account}:outpost-lag/${OutpostLagId}
    • Conditions: 

      aws:RequestTag/${TagKey}

      aws:ResourceTag/${TagKey}

      aws:TagKeys

      ec2:Region

      ec2:ResourceTag/${TagKey}

Updates

    Actions
  • CopySnapshot
      Conditions
    • + ec2:Encrypted
    • + ec2:Owner
    • + ec2:ParentSnapshot
    • + ec2:ParentVolume
    • + ec2:SnapshotTime
    • + ec2:VolumeSize