ec2:ModifyVpcEndpointServicePayerResponsibility is a Write access-level action in the ec2 service. Grants permission to modify the payer responsibility for a VPC endpoint service
ARNs that ec2:ModifyVpcEndpointServicePayerResponsibility can be scoped to in an IAM policy.
Keys you can use in the Condition block of a policy that grants ec2:ModifyVpcEndpointServicePayerResponsibility.
Filters access by the supported region of the VPC endpoint service
Filters access by a tag key and value pair that is allowed in the request
Filters access by a tag key and value pair of a resource
Filters access by a list of tag keys that are allowed in the request
Filters access by an attribute of a resource
Filters access by an attribute being set on a resource
Filters access by the name of the AWS Region
Filters access by a tag key and value pair of a resource
Filters access by multi region of the VPC endpoint service
Filters access by the private DNS name of the VPC endpoint service
Filters access by the region of the VPC endpoint service
A minimal policy that allows ec2:ModifyVpcEndpointServicePayerResponsibility. Replace "Resource": "*" with a specific ARN to follow least privilege.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowEc2ModifyVpcEndpointServicePayerResponsibility",
"Effect": "Allow",
"Action": "ec2:ModifyVpcEndpointServicePayerResponsibility",
"Resource": "*"
}
]
}