Inside AWS account there is the possibility to delegate the control of volume to external consulant. If you don’t want people to manage resources that don’t belong to them, you need to use an EC2 policies for limit their control. It’s very important because in this way, you prevent very accidental (or not) disaster. This policy is very restrictive. You can create and delete volumes only with particolar Tags, very helpful for control the cost with AWS Cost Explorer. You can attach and detach volumes tagged, but also if the EC2 instaces have the concordate Tags in the policy and do a backup or delete snapshots with the same tags of volume and EC2 Policy.

Copy to Clipboard

Thanks!

AWS Certified Solutions Architect Official Study Guide: https://amzn.to/2HQ0UM4

AWS Certified Solutions Architect Associate Practice Tests: https://amzn.to/2T9APwz

Recent Tweets

For privacy reasons Twitter needs your permission to be loaded.
I Accept