Reputation: 11
AWS IAM role creation via Windows CLI
I'm currently working on an AWS course, and have been using the Windows CLI in order to setup demo infrastructure in my AWS VPC. I was attempting to create a role called "bastion-role" via using the following command:
aws iam create-role --role-name bastion-role --assume-role-policy-document file://role-policy.json
but it yields this error:
Error parsing parameter
--assume-role-policy-document: Unable to load paramfile file://role-policy.json: [Errno 2] No such file or directory: 'role-policy.json'
I'm assuming it's having a problem referencing the local directory that I'm currently in. I've attempted the following troubleshooting measures:
- Not using the
file://part and just the name 'role-policy.json'. This didn't work - Trying to reference the local directory:
file://c:\role-policy-json - Tried a relative path:
file://../role-policy.json - Tried using 3 forward slashes:
file:///role-policy.json - Tried using 3 forward slashes and local directory:
file:///c:\role-policy.json
Unfortunately, none of these combinations have worked. I'm assuming I'm missing something, but I can't figure it out. If someone could shed some light on this problem, I'd appreciate it.
Upvotes: 1
Views: 1781
Answers (1)
Reputation: 59
Probably its too late to provide this answer, but the right way to execute this command is like this:
aws iam --region us-east-2 create-role --role-name <YOUR_ROLE_NAME> --assume-role-policy-document file://C:\Users\<USERNAME>\FULL\PATH\TO\file_containing_policy.json
After successful execution you should see something like this:
{
"Role": {
"Path": "/",
"RoleName": "YOUR_ROLE_NAME",
"RoleId": "AROXXXXXXXXXXXXXXXXXX",
"Arn": "arn:aws:iam::XXXXXXXXXXXX:role/YOUR_ROLE_NAME",
"CreateDate": "2020-11-17T04:53:35+00:00",
"AssumeRolePolicyDocument": {
"Version": "2012-10-17",
"Statement": [
{
"Sid": "",
"Effect": "Allow",
"Principal": {
"Service": "<SERVICE>.amazonaws.com"
},
"Action": "sts:AssumeRole"
}
]
}
}
}
Upvotes: 1
Related Questions
- How do I create a role with AWS managed policy using aws-cli?
- How to add an IAM role to an existing instance in AWS?
- AWS IAM Policy to allow user to create IAM Roles (from Management Console & AWS CLI)
- Getting "Invalid json" error when creating iam-role using aws cli
- Can't create IAM role with bash on ubuntu
- AWS: How do I programmatically add a role to an instance?
- How to apply IAM Role to EC2 instance?
- How can we apply IAM Roles to an ec2 instance?
- How can I create IAM Roles for Amazon EC2?
- assume IAM roles using user name and password