IAM Instance Profile
An IAM Instance Profile is a logical container for an IAM role that you can attach to an Amazon EC2 instance when it is launched. The profile passes the roleโs credentials to the instance so that applications running on the instance can securely call other AWS services without embedding long-lived access keys in the code or configuration. For full details see the AWS documentation: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html
Terrafrom Mappings:
aws_iam_instance_profile.arn
Supported Methodsโ
GET
: Get an IAM instance profile by nameLIST
: List all IAM instance profilesSEARCH
: Search IAM instance profiles by ARN
Possible Linksโ
iam-role
โ
Every instance profile contains exactly one IAM role (though a role can exist without an instance profile). Overmind links the profile to the role it encapsulates so that you can see which permissions will be passed to the EC2 instance.
iam-policy
โ
Policies are not attached directly to the instance profile but to the role inside it. Overmind surfaces these indirect relationships so that you can trace what policies โ and therefore permissions โ will ultimately be available on the instance through the profile.