mirror of
https://github.com/openshift/openshift-docs.git
synced 2026-02-05 12:46:18 +01:00
56 lines
3.1 KiB
Plaintext
56 lines
3.1 KiB
Plaintext
:_mod-docs-content-type: ASSEMBLY
|
|
[id="rosa-sts-ocm-role"]
|
|
= {product-title} IAM role resources
|
|
|
|
include::_attributes/attributes-openshift-dedicated.adoc[]
|
|
:context: rosa-sts-ocm-role
|
|
|
|
toc::[]
|
|
|
|
[role="_abstract"]
|
|
You must create several role resources on your AWS account in order to create and manage a {product-title} cluster.
|
|
|
|
include::modules/rosa-prereq-roles-overview.adoc[leveloffset=+1]
|
|
|
|
.Additional resources
|
|
* xref:../rosa_architecture/rosa-sts-about-iam-resources.adoc#rosa-sts-account-wide-roles-and-policies[Account-wide IAM role and policy reference]
|
|
* xref:../rosa_architecture/rosa-sts-about-iam-resources.adoc#rosa-sts-operator-roles_rosa-sts-about-iam-resources[Cluster-specific Operator IAM role reference]
|
|
|
|
//Roles required to use {cluster-manager}
|
|
|
|
include::modules/rosa-sts-about-ocm-role.adoc[leveloffset=+1]
|
|
|
|
[id="additional-resources-about-ocm-role"]
|
|
[role="_additional-resources"]
|
|
== Additional resources
|
|
* xref:../rosa_architecture/rosa-sts-about-iam-resources.adoc#rosa-sts-understanding-ocm-role[Understanding the {cluster-manager} role]
|
|
|
|
include::modules/rosa-sts-ocm-role-creation.adoc[leveloffset=+2]
|
|
|
|
[role="_additional-resources"]
|
|
[id="additional-resources_ocm-role-creation_{context}"]
|
|
.Additional resources
|
|
* xref:../rosa_architecture/rosa-sts-about-iam-resources.adoc#rosa-sts-account-wide-roles-and-policies-creation-methods_rosa-sts-about-iam-resources[Methods of account-wide role creation]
|
|
|
|
include::modules/rosa-sts-about-user-role.adoc[leveloffset=+1]
|
|
include::modules/rosa-sts-user-role-creation.adoc[leveloffset=+2]
|
|
|
|
[role="_additional-resources"]
|
|
[id="additional-resources_user-role-creation_{context}"]
|
|
.Additional resources
|
|
* xref:../support/troubleshooting/rosa-troubleshooting-deployments.adoc#rosa-troubleshooting-cluster-deletion_rosa-troubleshooting-cluster-deployments[Repairing a cluster that cannot be deleted]
|
|
* xref:../rosa_architecture/rosa-sts-about-iam-resources.adoc#rosa-sts-account-wide-roles-and-policies-creation-methods_rosa-sts-about-iam-resources[Methods of account-wide role creation]
|
|
|
|
include::modules/rosa-sts-aws-requirements-association-concept.adoc[leveloffset=+1]
|
|
include::modules/rosa-sts-aws-requirements-creating-association.adoc[leveloffset=+2]
|
|
include::modules/rosa-sts-aws-requirements-creating-multi-association.adoc[leveloffset=+2]
|
|
include::modules/rosa-sts-aws-requirements-attaching-boundary-policy.adoc[leveloffset=+1]
|
|
|
|
[role="_additional-resources"]
|
|
== Additional resources
|
|
* link:https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html[Permissions boundaries for IAM entities (AWS documentation)]
|
|
* xref:../rosa_install_access_delete_clusters/rosa-sts-creating-a-cluster-quickly.adoc#rosa-sts-creating-account-wide-sts-roles-and-policies_rosa-sts-creating-a-cluster-quickly[Creating the account-wide STS roles and policies]
|
|
* xref:../support/troubleshooting/rosa-troubleshooting-iam-resources.adoc#rosa-sts-ocm-roles-and-permissions-troubleshooting[Troubleshooting IAM roles]
|
|
ifdef::openshift-rosa[]
|
|
* xref:../rosa_architecture/rosa-sts-about-iam-resources.adoc#rosa-sts-account-wide-roles-and-policies[Account-wide IAM role and policy reference]
|