aws:RequestTag/${TagKey}
aws:TagKeys
ec2:AuthorizeSecurityGroupEgress
ec2:AuthorizeSecurityGroupIngress
ec2:CreateNetworkInterface
ec2:CreateNetworkInterfacePermission
ec2:CreateSecurityGroup
ec2:CreateTags
ec2:DescribeNetworkInterfaces
ec2:DescribeSubnets
ec2:DescribeVpcs
iam:CreateServiceLinkedRole
iam:GetRole
secretsmanager:DescribeSecret
secretsmanager:GetSecretValue
ssm:GetCommandInvocation
ssm:GetConnectionStatus
ssm:ListCommands
ssm:SendCommand
Name: directory
Required: Yes
ec2:AuthorizeSecurityGroupEgress
ec2:AuthorizeSecurityGroupIngress
ec2:CreateNetworkInterface
ec2:CreateNetworkInterfacePermission
ec2:CreateSecurityGroup
ec2:DeleteNetworkInterface
ec2:DeleteSecurityGroup
ec2:DescribeNetworkInterfaces
ec2:DescribeSubnets
ec2:DescribeVpcs
ssm:GetCommandInvocation
ssm:GetConnectionStatus
ssm:ListCommands
ssm:SendCommand
Name: directory
Required: Yes
ec2:AuthorizeSecurityGroupEgress
ec2:AuthorizeSecurityGroupIngress
ec2:CreateNetworkInterface
ec2:CreateNetworkInterfacePermission
ec2:CreateSecurityGroup
ec2:CreateTags
ec2:DescribeNetworkInterfaces
ec2:DescribeSubnets
ec2:DescribeVpcs
secretsmanager:DescribeSecret
secretsmanager:GetSecretValue
ssm:GetCommandInvocation
ssm:GetConnectionStatus
ssm:ListCommands
ssm:SendCommand