-
Notifications
You must be signed in to change notification settings - Fork 23
/
Copy pathec2.yml
677 lines (676 loc) · 27.2 KB
/
ec2.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
Actions:
- Name: ec2:AcceptAddressTransfer
- Name: ec2:AcceptReservedInstancesExchangeQuote
- Name: ec2:AcceptTransitGatewayMulticastDomainAssociations
- Name: ec2:AcceptTransitGatewayPeeringAttachment
- Name: ec2:AcceptTransitGatewayVpcAttachment
- Name: ec2:AcceptVpcEndpointConnections
- Name: ec2:AcceptVpcPeeringConnection
- Name: ec2:AdvertiseByoipCidr
- Name: ec2:AllocateAddress
- Name: ec2:AllocateHosts
- Name: ec2:AllocateIpamPoolCidr
- Name: ec2:ApplySecurityGroupsToClientVpnTargetNetwork
- Name: ec2:AssignIpv6Addresses
- Name: ec2:AssignPrivateIpAddresses
- Name: ec2:AssignPrivateNatGatewayAddress
- Name: ec2:AssociateAddress
- Name: ec2:AssociateClientVpnTargetNetwork
- Name: ec2:AssociateDhcpOptions
- Name: ec2:AssociateEnclaveCertificateIamRole
- Name: ec2:AssociateIamInstanceProfile
- Name: ec2:AssociateInstanceEventWindow
- Name: ec2:AssociateIpamByoasn
- Name: ec2:AssociateIpamResourceDiscovery
- Name: ec2:AssociateNatGatewayAddress
- Name: ec2:AssociateRouteTable
- Name: ec2:AssociateSubnetCidrBlock
- Name: ec2:AssociateTransitGatewayMulticastDomain
- Name: ec2:AssociateTransitGatewayPolicyTable
- Name: ec2:AssociateTransitGatewayRouteTable
- Name: ec2:AssociateTrunkInterface
- Name: ec2:AssociateVpcCidrBlock
- Name: ec2:AttachClassicLinkVpc
- Name: ec2:AttachInternetGateway
- Name: ec2:AttachNetworkInterface
- Name: ec2:AttachVerifiedAccessTrustProvider
- Name: ec2:AttachVolume
- Name: ec2:AttachVpnGateway
- Name: ec2:AuthorizeClientVpnIngress
- Name: ec2:AuthorizeSecurityGroupEgress
- Name: ec2:AuthorizeSecurityGroupIngress
- Name: ec2:BundleInstance
- Name: ec2:CancelBundleTask
- Name: ec2:CancelCapacityReservation
- Name: ec2:CancelCapacityReservationFleets
- Name: ec2:CancelConversionTask
- Name: ec2:CancelExportTask
- Name: ec2:CancelImageLaunchPermission
- Name: ec2:CancelImportTask
- Name: ec2:CancelReservedInstancesListing
- Name: ec2:CancelSpotFleetRequests
- Name: ec2:CancelSpotInstanceRequests
- Name: ec2:ConfirmProductInstance
- Name: ec2:CopyFpgaImage
- Name: ec2:CopyImage
- Name: ec2:CopySnapshot
- Name: ec2:CreateCapacityReservation
- Name: ec2:CreateCapacityReservationFleet
- Name: ec2:CreateCarrierGateway
- Name: ec2:CreateClientVpnEndpoint
- Name: ec2:CreateClientVpnRoute
- Name: ec2:CreateCoipCidr
- Name: ec2:CreateCoipPool
- Name: ec2:CreateCustomerGateway
- Name: ec2:CreateDefaultSubnet
- Name: ec2:CreateDefaultVpc
- Name: ec2:CreateDhcpOptions
- Name: ec2:CreateEgressOnlyInternetGateway
- Name: ec2:CreateFleet
- Name: ec2:CreateFlowLogs
- Name: ec2:CreateFpgaImage
- Name: ec2:CreateImage
- Name: ec2:CreateInstanceConnectEndpoint
- Name: ec2:CreateInstanceEventWindow
- Name: ec2:CreateInstanceExportTask
- Name: ec2:CreateInternetGateway
- Name: ec2:CreateIpam
- Name: ec2:CreateIpamExternalResourceVerificationToken
- Name: ec2:CreateIpamPool
- Name: ec2:CreateIpamResourceDiscovery
- Name: ec2:CreateIpamScope
- Name: ec2:CreateKeyPair
- Name: ec2:CreateLaunchTemplate
- Name: ec2:CreateLaunchTemplateVersion
- Name: ec2:CreateLocalGatewayRoute
- Name: ec2:CreateLocalGatewayRouteTable
- Name: ec2:CreateLocalGatewayRouteTableVirtualInterfaceGroupAssociation
- Name: ec2:CreateLocalGatewayRouteTableVpcAssociation
- Name: ec2:CreateManagedPrefixList
- Name: ec2:CreateNatGateway
- Name: ec2:CreateNetworkAcl
- Name: ec2:CreateNetworkAclEntry
- Name: ec2:CreateNetworkInsightsAccessScope
- Name: ec2:CreateNetworkInsightsPath
- Name: ec2:CreateNetworkInterface
- Name: ec2:CreateNetworkInterfacePermission
- Name: ec2:CreatePlacementGroup
- Name: ec2:CreatePublicIpv4Pool
- Name: ec2:CreateReplaceRootVolumeTask
- Name: ec2:CreateReservedInstancesListing
- Name: ec2:CreateRestoreImageTask
- Name: ec2:CreateRoute
- Name: ec2:CreateRouteTable
- Name: ec2:CreateSecurityGroup
- Name: ec2:CreateSnapshot
- Name: ec2:CreateSnapshots
- Name: ec2:CreateSpotDatafeedSubscription
- Name: ec2:CreateStoreImageTask
- Name: ec2:CreateSubnet
- Name: ec2:CreateSubnetCidrReservation
- Name: ec2:CreateTags
- Name: ec2:CreateTrafficMirrorFilter
- Name: ec2:CreateTrafficMirrorFilterRule
- Name: ec2:CreateTrafficMirrorSession
- Name: ec2:CreateTrafficMirrorTarget
- Name: ec2:CreateTransitGateway
- Name: ec2:CreateTransitGatewayConnect
- Name: ec2:CreateTransitGatewayConnectPeer
- Name: ec2:CreateTransitGatewayMulticastDomain
- Name: ec2:CreateTransitGatewayPeeringAttachment
- Name: ec2:CreateTransitGatewayPolicyTable
- Name: ec2:CreateTransitGatewayPrefixListReference
- Name: ec2:CreateTransitGatewayRoute
- Name: ec2:CreateTransitGatewayRouteTable
- Name: ec2:CreateTransitGatewayRouteTableAnnouncement
- Name: ec2:CreateTransitGatewayVpcAttachment
- Name: ec2:CreateVerifiedAccessEndpoint
- Name: ec2:CreateVerifiedAccessGroup
- Name: ec2:CreateVerifiedAccessInstance
- Name: ec2:CreateVerifiedAccessTrustProvider
- Name: ec2:CreateVolume
- Name: ec2:CreateVpc
- Name: ec2:CreateVpcEndpoint
- Name: ec2:CreateVpcEndpointConnectionNotification
- Name: ec2:CreateVpcEndpointServiceConfiguration
- Name: ec2:CreateVpcPeeringConnection
- Name: ec2:CreateVpnConnection
- Name: ec2:CreateVpnConnectionRoute
- Name: ec2:CreateVpnGateway
- Name: ec2:DeleteCarrierGateway
- Name: ec2:DeleteClientVpnEndpoint
- Name: ec2:DeleteClientVpnRoute
- Name: ec2:DeleteCoipCidr
- Name: ec2:DeleteCoipPool
- Name: ec2:DeleteCustomerGateway
- Name: ec2:DeleteDhcpOptions
- Name: ec2:DeleteEgressOnlyInternetGateway
- Name: ec2:DeleteFleets
- Name: ec2:DeleteFlowLogs
- Name: ec2:DeleteFpgaImage
- Name: ec2:DeleteInstanceConnectEndpoint
- Name: ec2:DeleteInstanceEventWindow
- Name: ec2:DeleteInternetGateway
- Name: ec2:DeleteIpam
- Name: ec2:DeleteIpamExternalResourceVerificationToken
- Name: ec2:DeleteIpamPool
- Name: ec2:DeleteIpamResourceDiscovery
- Name: ec2:DeleteIpamScope
- Name: ec2:DeleteKeyPair
- Name: ec2:DeleteLaunchTemplate
- Name: ec2:DeleteLaunchTemplateVersions
- Name: ec2:DeleteLocalGatewayRoute
- Name: ec2:DeleteLocalGatewayRouteTable
- Name: ec2:DeleteLocalGatewayRouteTableVirtualInterfaceGroupAssociation
- Name: ec2:DeleteLocalGatewayRouteTableVpcAssociation
- Name: ec2:DeleteManagedPrefixList
- Name: ec2:DeleteNatGateway
- Name: ec2:DeleteNetworkAcl
- Name: ec2:DeleteNetworkAclEntry
- Name: ec2:DeleteNetworkInsightsAccessScope
- Name: ec2:DeleteNetworkInsightsAccessScopeAnalysis
- Name: ec2:DeleteNetworkInsightsAnalysis
- Name: ec2:DeleteNetworkInsightsPath
- Name: ec2:DeleteNetworkInterface
- Name: ec2:DeleteNetworkInterfacePermission
- Name: ec2:DeletePlacementGroup
- Name: ec2:DeletePublicIpv4Pool
- Name: ec2:DeleteQueuedReservedInstances
- Name: ec2:DeleteRoute
- Name: ec2:DeleteRouteTable
- Name: ec2:DeleteSecurityGroup
- Name: ec2:DeleteSnapshot
- Name: ec2:DeleteSpotDatafeedSubscription
- Name: ec2:DeleteSubnet
- Name: ec2:DeleteSubnetCidrReservation
- Name: ec2:DeleteTags
- Name: ec2:DeleteTrafficMirrorFilter
- Name: ec2:DeleteTrafficMirrorFilterRule
- Name: ec2:DeleteTrafficMirrorSession
- Name: ec2:DeleteTrafficMirrorTarget
- Name: ec2:DeleteTransitGateway
- Name: ec2:DeleteTransitGatewayConnect
- Name: ec2:DeleteTransitGatewayConnectPeer
- Name: ec2:DeleteTransitGatewayMulticastDomain
- Name: ec2:DeleteTransitGatewayPeeringAttachment
- Name: ec2:DeleteTransitGatewayPolicyTable
- Name: ec2:DeleteTransitGatewayPrefixListReference
- Name: ec2:DeleteTransitGatewayRoute
- Name: ec2:DeleteTransitGatewayRouteTable
- Name: ec2:DeleteTransitGatewayRouteTableAnnouncement
- Name: ec2:DeleteTransitGatewayVpcAttachment
- Name: ec2:DeleteVerifiedAccessEndpoint
- Name: ec2:DeleteVerifiedAccessGroup
- Name: ec2:DeleteVerifiedAccessInstance
- Name: ec2:DeleteVerifiedAccessTrustProvider
- Name: ec2:DeleteVolume
- Name: ec2:DeleteVpc
- Name: ec2:DeleteVpcEndpointConnectionNotifications
- Name: ec2:DeleteVpcEndpointServiceConfigurations
- Name: ec2:DeleteVpcEndpoints
- Name: ec2:DeleteVpcPeeringConnection
- Name: ec2:DeleteVpnConnection
- Name: ec2:DeleteVpnConnectionRoute
- Name: ec2:DeleteVpnGateway
- Name: ec2:DeprovisionByoipCidr
- Name: ec2:DeprovisionIpamByoasn
- Name: ec2:DeprovisionIpamPoolCidr
- Name: ec2:DeprovisionPublicIpv4PoolCidr
- Name: ec2:DeregisterImage
- Name: ec2:DeregisterInstanceEventNotificationAttributes
- Name: ec2:DeregisterTransitGatewayMulticastGroupMembers
- Name: ec2:DeregisterTransitGatewayMulticastGroupSources
- Name: ec2:DescribeAccountAttributes
- Name: ec2:DescribeAddressTransfers
- Name: ec2:DescribeAddresses
- Name: ec2:DescribeAddressesAttribute
- Name: ec2:DescribeAggregateIdFormat
- Name: ec2:DescribeAvailabilityZones
- Name: ec2:DescribeAwsNetworkPerformanceMetricSubscriptions
- Name: ec2:DescribeBundleTasks
- Name: ec2:DescribeByoipCidrs
- Name: ec2:DescribeCapacityBlockOfferings
- Name: ec2:DescribeCapacityReservationFleets
- Name: ec2:DescribeCapacityReservations
- Name: ec2:DescribeCarrierGateways
- Name: ec2:DescribeClassicLinkInstances
- Name: ec2:DescribeClientVpnAuthorizationRules
- Name: ec2:DescribeClientVpnConnections
- Name: ec2:DescribeClientVpnEndpoints
- Name: ec2:DescribeClientVpnRoutes
- Name: ec2:DescribeClientVpnTargetNetworks
- Name: ec2:DescribeCoipPools
- Name: ec2:DescribeConversionTasks
- Name: ec2:DescribeCustomerGateways
- Name: ec2:DescribeDhcpOptions
- Name: ec2:DescribeEgressOnlyInternetGateways
- Name: ec2:DescribeElasticGpus
- Name: ec2:DescribeExportImageTasks
- Name: ec2:DescribeExportTasks
- Name: ec2:DescribeFastLaunchImages
- Name: ec2:DescribeFastSnapshotRestores
- Name: ec2:DescribeFleetHistory
- Name: ec2:DescribeFleetInstances
- Name: ec2:DescribeFleets
- Name: ec2:DescribeFlowLogs
- Name: ec2:DescribeFpgaImageAttribute
- Name: ec2:DescribeFpgaImages
- Name: ec2:DescribeHostReservationOfferings
- Name: ec2:DescribeHostReservations
- Name: ec2:DescribeHosts
- Name: ec2:DescribeIamInstanceProfileAssociations
- Name: ec2:DescribeIdFormat
- Name: ec2:DescribeIdentityIdFormat
- Name: ec2:DescribeImageAttribute
- Name: ec2:DescribeImages
- Name: ec2:DescribeImportImageTasks
- Name: ec2:DescribeImportSnapshotTasks
- Name: ec2:DescribeInstanceAttribute
- Name: ec2:DescribeInstanceConnectEndpoints
- Name: ec2:DescribeInstanceCreditSpecifications
- Name: ec2:DescribeInstanceEventNotificationAttributes
- Name: ec2:DescribeInstanceEventWindows
- Name: ec2:DescribeInstanceStatus
- Name: ec2:DescribeInstanceTopology
- Name: ec2:DescribeInstanceTypeOfferings
- Name: ec2:DescribeInstanceTypes
- Name: ec2:DescribeInstances
- Name: ec2:DescribeInternetGateways
- Name: ec2:DescribeIpamByoasn
- Name: ec2:DescribeIpamExternalResourceVerificationTokens
- Name: ec2:DescribeIpamPools
- Name: ec2:DescribeIpamResourceDiscoveries
- Name: ec2:DescribeIpamResourceDiscoveryAssociations
- Name: ec2:DescribeIpamScopes
- Name: ec2:DescribeIpams
- Name: ec2:DescribeIpv6Pools
- Name: ec2:DescribeKeyPairs
- Name: ec2:DescribeLaunchTemplateVersions
- Name: ec2:DescribeLaunchTemplates
- Name: ec2:DescribeLocalGatewayRouteTableVirtualInterfaceGroupAssociations
- Name: ec2:DescribeLocalGatewayRouteTableVpcAssociations
- Name: ec2:DescribeLocalGatewayRouteTables
- Name: ec2:DescribeLocalGatewayVirtualInterfaceGroups
- Name: ec2:DescribeLocalGatewayVirtualInterfaces
- Name: ec2:DescribeLocalGateways
- Name: ec2:DescribeLockedSnapshots
- Name: ec2:DescribeMacHosts
- Name: ec2:DescribeManagedPrefixLists
- Name: ec2:DescribeMovingAddresses
- Name: ec2:DescribeNatGateways
- Name: ec2:DescribeNetworkAcls
- Name: ec2:DescribeNetworkInsightsAccessScopeAnalyses
- Name: ec2:DescribeNetworkInsightsAccessScopes
- Name: ec2:DescribeNetworkInsightsAnalyses
- Name: ec2:DescribeNetworkInsightsPaths
- Name: ec2:DescribeNetworkInterfaceAttribute
- Name: ec2:DescribeNetworkInterfacePermissions
- Name: ec2:DescribeNetworkInterfaces
- Name: ec2:DescribePlacementGroups
- Name: ec2:DescribePrefixLists
- Name: ec2:DescribePrincipalIdFormat
- Name: ec2:DescribePublicIpv4Pools
- Name: ec2:DescribeRegions
- Name: ec2:DescribeReplaceRootVolumeTasks
- Name: ec2:DescribeReservedInstances
- Name: ec2:DescribeReservedInstancesListings
- Name: ec2:DescribeReservedInstancesModifications
- Name: ec2:DescribeReservedInstancesOfferings
- Name: ec2:DescribeRouteTables
- Name: ec2:DescribeScheduledInstanceAvailability
- Name: ec2:DescribeScheduledInstances
- Name: ec2:DescribeSecurityGroupReferences
- Name: ec2:DescribeSecurityGroupRules
- Name: ec2:DescribeSecurityGroups
- Name: ec2:DescribeSnapshotAttribute
- Name: ec2:DescribeSnapshotTierStatus
- Name: ec2:DescribeSnapshots
- Name: ec2:DescribeSpotDatafeedSubscription
- Name: ec2:DescribeSpotFleetInstances
- Name: ec2:DescribeSpotFleetRequestHistory
- Name: ec2:DescribeSpotFleetRequests
- Name: ec2:DescribeSpotInstanceRequests
- Name: ec2:DescribeSpotPriceHistory
- Name: ec2:DescribeStaleSecurityGroups
- Name: ec2:DescribeStoreImageTasks
- Name: ec2:DescribeSubnets
- Name: ec2:DescribeTags
- Name: ec2:DescribeTrafficMirrorFilterRules
- Name: ec2:DescribeTrafficMirrorFilters
- Name: ec2:DescribeTrafficMirrorSessions
- Name: ec2:DescribeTrafficMirrorTargets
- Name: ec2:DescribeTransitGatewayAttachments
- Name: ec2:DescribeTransitGatewayConnectPeers
- Name: ec2:DescribeTransitGatewayConnects
- Name: ec2:DescribeTransitGatewayMulticastDomains
- Name: ec2:DescribeTransitGatewayPeeringAttachments
- Name: ec2:DescribeTransitGatewayPolicyTables
- Name: ec2:DescribeTransitGatewayRouteTableAnnouncements
- Name: ec2:DescribeTransitGatewayRouteTables
- Name: ec2:DescribeTransitGatewayVpcAttachments
- Name: ec2:DescribeTransitGateways
- Name: ec2:DescribeTrunkInterfaceAssociations
- Name: ec2:DescribeVerifiedAccessEndpoints
- Name: ec2:DescribeVerifiedAccessGroups
- Name: ec2:DescribeVerifiedAccessInstanceLoggingConfigurations
- Name: ec2:DescribeVerifiedAccessInstances
- Name: ec2:DescribeVerifiedAccessTrustProviders
- Name: ec2:DescribeVolumeAttribute
- Name: ec2:DescribeVolumeStatus
- Name: ec2:DescribeVolumes
- Name: ec2:DescribeVolumesModifications
- Name: ec2:DescribeVpcAttribute
- Name: ec2:DescribeVpcClassicLink
- Name: ec2:DescribeVpcClassicLinkDnsSupport
- Name: ec2:DescribeVpcEndpointConnectionNotifications
- Name: ec2:DescribeVpcEndpointConnections
- Name: ec2:DescribeVpcEndpointServiceConfigurations
- Name: ec2:DescribeVpcEndpointServicePermissions
- Name: ec2:DescribeVpcEndpointServices
- Name: ec2:DescribeVpcEndpoints
- Name: ec2:DescribeVpcPeeringConnections
- Name: ec2:DescribeVpcs
- Name: ec2:DescribeVpnConnections
- Name: ec2:DescribeVpnGateways
- Name: ec2:DetachClassicLinkVpc
- Name: ec2:DetachInternetGateway
- Name: ec2:DetachNetworkInterface
- Name: ec2:DetachVerifiedAccessTrustProvider
- Name: ec2:DetachVolume
- Name: ec2:DetachVpnGateway
- Name: ec2:DisableAddressTransfer
- Name: ec2:DisableAwsNetworkPerformanceMetricSubscription
- Name: ec2:DisableEbsEncryptionByDefault
- Name: ec2:DisableFastLaunch
- Name: ec2:DisableFastSnapshotRestores
- Name: ec2:DisableImage
- Name: ec2:DisableImageBlockPublicAccess
- Name: ec2:DisableImageDeprecation
- Name: ec2:DisableImageDeregistrationProtection
- Name: ec2:DisableIpamOrganizationAdminAccount
- Name: ec2:DisableSerialConsoleAccess
- Name: ec2:DisableSnapshotBlockPublicAccess
- Name: ec2:DisableTransitGatewayRouteTablePropagation
- Name: ec2:DisableVgwRoutePropagation
- Name: ec2:DisableVpcClassicLink
- Name: ec2:DisableVpcClassicLinkDnsSupport
- Name: ec2:DisassociateAddress
- Name: ec2:DisassociateClientVpnTargetNetwork
- Name: ec2:DisassociateEnclaveCertificateIamRole
- Name: ec2:DisassociateIamInstanceProfile
- Name: ec2:DisassociateInstanceEventWindow
- Name: ec2:DisassociateIpamByoasn
- Name: ec2:DisassociateIpamResourceDiscovery
- Name: ec2:DisassociateNatGatewayAddress
- Name: ec2:DisassociateRouteTable
- Name: ec2:DisassociateSubnetCidrBlock
- Name: ec2:DisassociateTransitGatewayMulticastDomain
- Name: ec2:DisassociateTransitGatewayPolicyTable
- Name: ec2:DisassociateTransitGatewayRouteTable
- Name: ec2:DisassociateTrunkInterface
- Name: ec2:DisassociateVpcCidrBlock
- Name: ec2:EnableAddressTransfer
- Name: ec2:EnableAwsNetworkPerformanceMetricSubscription
- Name: ec2:EnableEbsEncryptionByDefault
- Name: ec2:EnableFastLaunch
- Name: ec2:EnableFastSnapshotRestores
- Name: ec2:EnableImage
- Name: ec2:EnableImageBlockPublicAccess
- Name: ec2:EnableImageDeprecation
- Name: ec2:EnableImageDeregistrationProtection
- Name: ec2:EnableIpamOrganizationAdminAccount
- Name: ec2:EnableReachabilityAnalyzerOrganizationSharing
- Name: ec2:EnableSerialConsoleAccess
- Name: ec2:EnableSnapshotBlockPublicAccess
- Name: ec2:EnableTransitGatewayRouteTablePropagation
- Name: ec2:EnableVgwRoutePropagation
- Name: ec2:EnableVolumeIO
- Name: ec2:EnableVpcClassicLink
- Name: ec2:EnableVpcClassicLinkDnsSupport
- Name: ec2:ExportClientVpnClientCertificateRevocationList
- Name: ec2:ExportClientVpnClientConfiguration
- Name: ec2:ExportImage
- Name: ec2:ExportTransitGatewayRoutes
- Name: ec2:GetAssociatedEnclaveCertificateIamRoles
- Name: ec2:GetAssociatedIpv6PoolCidrs
- Name: ec2:GetAwsNetworkPerformanceData
- Name: ec2:GetCapacityReservationUsage
- Name: ec2:GetCoipPoolUsage
- Name: ec2:GetConsoleOutput
- Name: ec2:GetConsoleScreenshot
- Name: ec2:GetDefaultCreditSpecification
- Name: ec2:GetEbsDefaultKmsKeyId
- Name: ec2:GetEbsEncryptionByDefault
- Name: ec2:GetFlowLogsIntegrationTemplate
- Name: ec2:GetGroupsForCapacityReservation
- Name: ec2:GetHostReservationPurchasePreview
- Name: ec2:GetImageBlockPublicAccessState
- Name: ec2:GetInstanceMetadataDefaults
- Name: ec2:GetInstanceTpmEkPub
- Name: ec2:GetInstanceTypesFromInstanceRequirements
- Name: ec2:GetInstanceUefiData
- Name: ec2:GetIpamAddressHistory
- Name: ec2:GetIpamDiscoveredAccounts
- Name: ec2:GetIpamDiscoveredPublicAddresses
- Name: ec2:GetIpamDiscoveredResourceCidrs
- Name: ec2:GetIpamPoolAllocations
- Name: ec2:GetIpamPoolCidrs
- Name: ec2:GetIpamResourceCidrs
- Name: ec2:GetLaunchTemplateData
- Name: ec2:GetManagedPrefixListAssociations
- Name: ec2:GetManagedPrefixListEntries
- Name: ec2:GetNetworkInsightsAccessScopeAnalysisFindings
- Name: ec2:GetNetworkInsightsAccessScopeContent
- Name: ec2:GetPasswordData
- Name: ec2:GetReservedInstancesExchangeQuote
- Name: ec2:GetSecurityGroupsForVpc
- Name: ec2:GetSerialConsoleAccessStatus
- Name: ec2:GetSnapshotBlockPublicAccessState
- Name: ec2:GetSpotPlacementScores
- Name: ec2:GetSubnetCidrReservations
- Name: ec2:GetTransitGatewayAttachmentPropagations
- Name: ec2:GetTransitGatewayMulticastDomainAssociations
- Name: ec2:GetTransitGatewayPolicyTableAssociations
- Name: ec2:GetTransitGatewayPolicyTableEntries
- Name: ec2:GetTransitGatewayPrefixListReferences
- Name: ec2:GetTransitGatewayRouteTableAssociations
- Name: ec2:GetTransitGatewayRouteTablePropagations
- Name: ec2:GetVerifiedAccessEndpointPolicy
- Name: ec2:GetVerifiedAccessGroupPolicy
- Name: ec2:GetVpnConnectionDeviceSampleConfiguration
- Name: ec2:GetVpnConnectionDeviceTypes
- Name: ec2:GetVpnTunnelReplacementStatus
- Name: ec2:ImportClientVpnClientCertificateRevocationList
- Name: ec2:ImportImage
- Name: ec2:ImportInstance
- Name: ec2:ImportKeyPair
- Name: ec2:ImportSnapshot
- Name: ec2:ImportVolume
- Name: ec2:ListImagesInRecycleBin
- Name: ec2:ListSnapshotsInRecycleBin
- Name: ec2:LockSnapshot
- Name: ec2:ModifyAddressAttribute
- Name: ec2:ModifyAvailabilityZoneGroup
- Name: ec2:ModifyCapacityReservation
- Name: ec2:ModifyCapacityReservationFleet
- Name: ec2:ModifyClientVpnEndpoint
- Name: ec2:ModifyDefaultCreditSpecification
- Name: ec2:ModifyEbsDefaultKmsKeyId
- Name: ec2:ModifyFleet
- Name: ec2:ModifyFpgaImageAttribute
- Name: ec2:ModifyHosts
- Name: ec2:ModifyIdFormat
- Name: ec2:ModifyIdentityIdFormat
- Name: ec2:ModifyImageAttribute
- Name: ec2:ModifyInstanceAttribute
- Name: ec2:ModifyInstanceCapacityReservationAttributes
- Name: ec2:ModifyInstanceCreditSpecification
- Name: ec2:ModifyInstanceEventStartTime
- Name: ec2:ModifyInstanceEventWindow
- Name: ec2:ModifyInstanceMaintenanceOptions
- Name: ec2:ModifyInstanceMetadataDefaults
- Name: ec2:ModifyInstanceMetadataOptions
- Name: ec2:ModifyInstancePlacement
- Name: ec2:ModifyIpam
- Name: ec2:ModifyIpamPool
- Name: ec2:ModifyIpamResourceCidr
- Name: ec2:ModifyIpamResourceDiscovery
- Name: ec2:ModifyIpamScope
- Name: ec2:ModifyLaunchTemplate
- Name: ec2:ModifyLocalGatewayRoute
- Name: ec2:ModifyManagedPrefixList
- Name: ec2:ModifyNetworkInterfaceAttribute
- Name: ec2:ModifyPrivateDnsNameOptions
- Name: ec2:ModifyReservedInstances
- Name: ec2:ModifySecurityGroupRules
- Name: ec2:ModifySnapshotAttribute
- Name: ec2:ModifySnapshotTier
- Name: ec2:ModifySpotFleetRequest
- Name: ec2:ModifySubnetAttribute
- Name: ec2:ModifyTrafficMirrorFilterNetworkServices
- Name: ec2:ModifyTrafficMirrorFilterRule
- Name: ec2:ModifyTrafficMirrorSession
- Name: ec2:ModifyTransitGateway
- Name: ec2:ModifyTransitGatewayPrefixListReference
- Name: ec2:ModifyTransitGatewayVpcAttachment
- Name: ec2:ModifyVerifiedAccessEndpoint
- Name: ec2:ModifyVerifiedAccessEndpointPolicy
- Name: ec2:ModifyVerifiedAccessGroup
- Name: ec2:ModifyVerifiedAccessGroupPolicy
- Name: ec2:ModifyVerifiedAccessInstance
- Name: ec2:ModifyVerifiedAccessInstanceLoggingConfiguration
- Name: ec2:ModifyVerifiedAccessTrustProvider
- Name: ec2:ModifyVolume
- Name: ec2:ModifyVolumeAttribute
- Name: ec2:ModifyVpcAttribute
- Name: ec2:ModifyVpcEndpoint
- Name: ec2:ModifyVpcEndpointConnectionNotification
- Name: ec2:ModifyVpcEndpointServiceConfiguration
- Name: ec2:ModifyVpcEndpointServicePayerResponsibility
- Name: ec2:ModifyVpcEndpointServicePermissions
- Name: ec2:ModifyVpcPeeringConnectionOptions
- Name: ec2:ModifyVpcTenancy
- Name: ec2:ModifyVpnConnection
- Name: ec2:ModifyVpnConnectionOptions
- Name: ec2:ModifyVpnTunnelCertificate
- Name: ec2:ModifyVpnTunnelOptions
- Name: ec2:MonitorInstances
- Name: ec2:MoveAddressToVpc
- Name: ec2:MoveByoipCidrToIpam
- Name: ec2:ProvisionByoipCidr
- Name: ec2:ProvisionIpamByoasn
- Name: ec2:ProvisionIpamPoolCidr
- Name: ec2:ProvisionPublicIpv4PoolCidr
- Name: ec2:PurchaseCapacityBlock
- Name: ec2:PurchaseHostReservation
- Name: ec2:PurchaseReservedInstancesOffering
- Name: ec2:PurchaseScheduledInstances
- Name: ec2:RebootInstances
- Name: ec2:RegisterImage
- Name: ec2:RegisterInstanceEventNotificationAttributes
- Name: ec2:RegisterTransitGatewayMulticastGroupMembers
- Name: ec2:RegisterTransitGatewayMulticastGroupSources
- Name: ec2:RejectTransitGatewayMulticastDomainAssociations
- Name: ec2:RejectTransitGatewayPeeringAttachment
- Name: ec2:RejectTransitGatewayVpcAttachment
- Name: ec2:RejectVpcEndpointConnections
- Name: ec2:RejectVpcPeeringConnection
- Name: ec2:ReleaseAddress
- Name: ec2:ReleaseHosts
- Name: ec2:ReleaseIpamPoolAllocation
- Name: ec2:ReplaceIamInstanceProfileAssociation
- Name: ec2:ReplaceNetworkAclAssociation
- Name: ec2:ReplaceNetworkAclEntry
- Name: ec2:ReplaceRoute
- Name: ec2:ReplaceRouteTableAssociation
- Name: ec2:ReplaceTransitGatewayRoute
- Name: ec2:ReplaceVpnTunnel
- Name: ec2:ReportInstanceStatus
- Name: ec2:RequestSpotFleet
- Name: ec2:RequestSpotInstances
- Name: ec2:ResetAddressAttribute
- Name: ec2:ResetEbsDefaultKmsKeyId
- Name: ec2:ResetFpgaImageAttribute
- Name: ec2:ResetImageAttribute
- Name: ec2:ResetInstanceAttribute
- Name: ec2:ResetNetworkInterfaceAttribute
- Name: ec2:ResetSnapshotAttribute
- Name: ec2:RestoreAddressToClassic
- Name: ec2:RestoreImageFromRecycleBin
- Name: ec2:RestoreManagedPrefixListVersion
- Name: ec2:RestoreSnapshotFromRecycleBin
- Name: ec2:RestoreSnapshotTier
- Name: ec2:RevokeClientVpnIngress
- Name: ec2:RevokeSecurityGroupEgress
- Name: ec2:RevokeSecurityGroupIngress
- Name: ec2:RunInstances
- Name: ec2:RunScheduledInstances
- Name: ec2:SearchLocalGatewayRoutes
- Name: ec2:SearchTransitGatewayMulticastGroups
- Name: ec2:SearchTransitGatewayRoutes
- Name: ec2:SendDiagnosticInterrupt
- Name: ec2:StartInstances
- Name: ec2:StartNetworkInsightsAccessScopeAnalysis
- Name: ec2:StartNetworkInsightsAnalysis
- Name: ec2:StartVpcEndpointServicePrivateDnsVerification
- Name: ec2:StopInstances
- Name: ec2:TerminateClientVpnConnections
- Name: ec2:TerminateInstances
- Name: ec2:UnassignIpv6Addresses
- Name: ec2:UnassignPrivateIpAddresses
- Name: ec2:UnassignPrivateNatGatewayAddress
- Name: ec2:UnlockSnapshot
- Name: ec2:UnmonitorInstances
- Name: ec2:UpdateSecurityGroupRuleDescriptionsEgress
- Name: ec2:UpdateSecurityGroupRuleDescriptionsIngress
- Name: ec2:WithdrawByoipCidr
# actions with no corresponding API
- Name: ec2:AcceptCapacityReservationBillingOwnership
- Name: ec2:AssociateCapacityReservationBillingOwner
- Name: ec2:AssociateSecurityGroupVpc
- Name: ec2:AssociateVerifiedAccessInstanceWebAcl
- Name: ec2:CancelDeclarativePoliciesReport
- Name: ec2:CreateCapacityReservationBySplitting
- Name: ec2:CreateCoipPoolPermission
- Name: ec2:CreateLocalGatewayRouteTablePermission
- Name: ec2:CreateVpcBlockPublicAccessExclusion
- Name: ec2:DeleteCoipPoolPermission
- Name: ec2:DeleteLocalGatewayRouteTablePermission
- Name: ec2:DeleteResourcePolicy
- Name: ec2:DeleteVpcBlockPublicAccessExclusion
- Name: ec2:DescribeCapacityBlockExtensionHistory
- Name: ec2:DescribeCapacityBlockExtensionOfferings
- Name: ec2:DescribeCapacityReservationBillingRequests
- Name: ec2:DescribeDeclarativePoliciesReports
- Name: ec2:DescribeInstanceImageMetadata
- Name: ec2:DescribeLocalGatewayRouteTablePermissions
- Name: ec2:DescribeSecurityGroupVpcAssociations
- Name: ec2:DescribeVerifiedAccessInstanceWebAclAssociations
- Name: ec2:DescribeVpcBlockPublicAccessExclusions
- Name: ec2:DescribeVpcBlockPublicAccessOptions
- Name: ec2:DescribeVpcEndpointAssociations
- Name: ec2:DisableAllowedImagesSettings
- Name: ec2:DisassociateCapacityReservationBillingOwner
- Name: ec2:DisassociateSecurityGroupVpc
- Name: ec2:DisassociateVerifiedAccessInstanceWebAcl
- Name: ec2:EnableAllowedImagesSettings
- Name: ec2:ExportVerifiedAccessInstanceClientConfiguration
- Name: ec2:GetAllowedImagesSettings
- Name: ec2:GetDeclarativePoliciesReportSummary
- Name: ec2:GetResourcePolicy
- Name: ec2:GetVerifiedAccessEndpointTargets
- Name: ec2:GetVerifiedAccessInstanceWebAcl
- Name: ec2:ImportByoipCidrToIpam
- Name: ec2:InjectApiError
- Name: ec2:ModifyInstanceCpuOptions
- Name: ec2:ModifyInstanceNetworkPerformanceOptions
- Name: ec2:ModifyVpcBlockPublicAccessExclusion
- Name: ec2:ModifyVpcBlockPublicAccessOptions
- Name: ec2:MoveCapacityReservationInstances
- Name: ec2:PauseVolumeIO
- Name: ec2:PurchaseCapacityBlockExtension
- Name: ec2:PutResourcePolicy
- Name: ec2:RejectCapacityReservationBillingOwnership
- Name: ec2:ReplaceImageCriteriaInAllowedImagesSettings
- Name: ec2:SendSpotInstanceInterruptions
- Name: ec2:StartDeclarativePoliciesReport