|
|
@@ -76,11 +76,16 @@ resource "aws_iam_role_policy_attachment" "salt_master_sm_attach" {
|
|
|
resource "aws_iam_role_policy_attachment" "salt_master_AmazonEC2RoleforSSM" {
|
|
|
role = aws_iam_role.salt_master_instance_role.name
|
|
|
policy_arn = "arn:${var.aws_partition}:iam::aws:policy/service-role/AmazonEC2RoleforSSM"
|
|
|
-
|
|
|
}
|
|
|
|
|
|
#This policy needs to be create prior to creating the Salt Master
|
|
|
-resource "aws_iam_role_policy_attachment" "salt_master_policy_attach" {
|
|
|
+resource "aws_iam_role_policy_attachment" "salt_master_policy_attach_tag_read" {
|
|
|
role = aws_iam_role.salt_master_instance_role.name
|
|
|
policy_arn = "arn:${var.aws_partition}:iam::${var.aws_account_id}:policy/launchroles/default_instance_tag_read"
|
|
|
}
|
|
|
+
|
|
|
+#This policy needs to be create prior to creating the Salt Master
|
|
|
+resource "aws_iam_role_policy_attachment" "salt_master_policy_attach_binaries" {
|
|
|
+ role = aws_iam_role.salt_master_instance_role.name
|
|
|
+ policy_arn = "arn:${var.aws_partition}:iam::${var.aws_account_id}:policy/launchroles/default_instance_s3_binaries"
|
|
|
+}
|
Fred Damstra