Cloud Infra Architecture (AWS)/AWS Organization

[AWS Organization] SCP budgets 접근 허용 정책

seongduck 2024. 2. 11. 20:08

1) SCP 문법

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "scpaccessbudgets",
      "Effect": "Allow",
      "Action": [
        "iam:AttachGroupPolicy",
        "iam:AttachRolePolicy",
        "iam:AttachUserPolicy",
        "iam:DetachGroupPolicy",
        "iam:DetachRolePolicy",
        "iam:DetachUserPolicy",
        "organizations:AttachPolicy",
        "organizations:DetachPolicy"
      ],
      "Resource": "*"
    }
  ]
}