Skip to main content

Permissions

Properties

PropertyTypeRequiredDescriptionDefaultExample
provision_roleAppAWSIAMRoleNoprovisioning IAM role IAM role used during initial provisioning of the install with permissions to set up resources--
deprovision_roleAppAWSIAMRoleNodeprovisioning IAM role IAM role used for tearing down the install and cleaning up resources--
maintenance_roleAppAWSIAMRoleNomaintenance IAM role IAM role used for day-to-day maintenance, updates, and operational tasks--
rolesarrayNolist of permission roles Array of role definitions in directory-based permission structure. Each role must have a type field (provision, maintenance, or deprovision)--