Skip to main content
343 questions
Newest Active Bountied Unanswered
0 votes
0 answers
20 views

Re-establishing a broken long-lived connection with iam tokens

my company has historically used Lettuce without authentication. We relied on AWS security groups. But now our security team is asking us to authenticate via iam. Each of our application services that ...
jpsartre's user avatar
jpsartre
  • 13
2 votes
2 answers
88 views

ImagePullFailure for Azure Container App/Registry. IAM failing, admin user required?

I've set up a container registry that contains an image. I have a container app that uses the image and I have it working, but only when "Admin user" is checked in the registry's access keys....
Murphybro2's user avatar
Murphybro2
  • 2,741
0 votes
0 answers
67 views

"Google Cloud IAM: Unable to find 'Cloud Vision API User' role or 'vision.images.annotate' permission, even with 'Service Account Admin' role"

"I am trying to grant the 'Cloud Vision API User' role (or the vision.images.annotate permission for a custom role) to a service account in my Google Cloud project ('DriveOCRAutomation'). However,...
Mir Eliyas's user avatar
Mir Eliyas
  • 1
0 votes
0 answers
21 views

Kaidm client error while trying to log in

I started to explore kanidm and I was following their Evaluation Quickstart tutorial then I created a person using commands I tried to add credential to this user through the UI but I failed,, then I ...
monica millad's user avatar
monica millad
  • 101
0 votes
0 answers
25 views

Okhttp support for TLS 1.3

My code is trying to connect one application's REST API which is basically moved from TLS1.2 to TLS 1.3 https://docs.aws.amazon.com/elasticloadbalancing/latest/application/describe-ssl-policies.html ...
curiousMind's user avatar
curiousMind
  • 2,812
0 votes
0 answers
80 views

Deploy AWS Lambda Function Using Docker Image still rely on aws profile

I want to deploy a lambda function that call OpenAI, do some processing for text and return result. def openaipreprocessing(text): # call OpenAI api return vector def ...
LearnToGrow's user avatar
LearnToGrow
  • 1,791
0 votes
0 answers
63 views

AWS - Assume a role when using IAM Identity Center

We have deployed an AWS Landing Zone with LZA. We have multiple Accounts in our Organisation. I want a user created in the Management Account in IAM Identity Center to assume a role set up in a ...
Ravi Matharu's user avatar
Ravi Matharu
  • 1
0 votes
1 answer
280 views

Issues with RedisCluster Connection Using ioredis

I’m experiencing some connection issues with RedisCluster. I’m using Redis version 7.0 and connecting to RedisCluster(memoryStore GCP using Iam and disabling TLS) with the ioredis package in a Node.js ...
Shahar Ben Ezra's user avatar
Shahar Ben Ezra
  • 71
0 votes
0 answers
15 views

OME 4.3 - OIDC Failed Authentication on Keycloak with "Unable to add or remove the user from the group because the user ID is invalid"

Error message is reported from ome gui when attempting to add oidc user : "Unable to add or remove the user from the group because the user ID is invalid"
Gowtham Nakulan's user avatar
Gowtham Nakulan
  • 21
0 votes
1 answer
383 views

Owner of GCP project unable to start or delete VM instance: 'Required permission to mutate this resource' error

I'm facing an issue on Google Cloud Platform (GCP) where I, as the Owner of the project, am unable to start or delete a VM instance. When I attempt to start the instance, I get the following error: ...
Nithish R's user avatar
Nithish R
  • 1
0 votes
2 answers
68 views

Why is this IAM policy denying access with an MFA session?

We've been modifying our IAM policies for the rest of the team. They should only be allowed to do most things if MFA is active for their session. Even when they have an MFA session, they cannot access ...
Vincent Verbist's user avatar
Vincent Verbist
  • 33
0 votes
0 answers
52 views

Implementing dynamic resource authorization

This is kind of close to asking about an opinion but I'm going to give it a shot nonetheless. What I need to do is implement authorization in a system where users create the resources dynamically and ...
Magnus's user avatar
Magnus
  • 113
0 votes
1 answer
46 views

Python connection to cloud-based SQL Server with IAM authentication and access token

I am trying to connect to our cloud-based SQL Server database using Python. How to pass to pyodbc or mssql connector the ODBC driver name, IAM authentication and access token information? If it cannot ...
Reev Edd's user avatar
Reev Edd
  • 1
0 votes
0 answers
39 views

How to securely manage access to sensitive secrets in AWS with strict user permissions?

I’m currently working on a project where we need to securely manage sensitive secrets, like API keys and seed phrases. Our team is small, and we don’t want these secrets to be accessible to anyone ...
Uwe ThuB's user avatar
Uwe ThuB
  • 1
0 votes
1 answer
81 views

GKE has an IAM roles/container.clusterViewer, How can I duplicate that on EKS? Read only kubectl access on EKS by default for all authenticated users?

Context: GKE has this great feature where: Most IAM roles inherit permissions of roles/container.clusterViewer. It grants them RO kubectl access, they can view most stuff, just not secrets, and can't ...
neoakris's user avatar
neoakris
  • 5,230

15 30 50 per page
1
2 3 4 5
23