elasticache:AuthorizeCacheSecurityGroupIngress is a Write access-level action in the elasticache service. Grants permission to authorize an EC2 security group on a ElastiCache security group
ARNs that elasticache:AuthorizeCacheSecurityGroupIngress can be scoped to in an IAM policy.
Keys you can use in the Condition block of a policy that grants elasticache:AuthorizeCacheSecurityGroupIngress.
Filters actions based on the tags that are passed in the request
Filters actions based on the tags associated with the resource
Filters actions based on the tag keys that are passed in the request
To use elasticache:AuthorizeCacheSecurityGroupIngress you may also need to grant:
A minimal policy that allows elasticache:AuthorizeCacheSecurityGroupIngress. Replace "Resource": "*" with a specific ARN to follow least privilege.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowElasticacheAuthorizeCacheSecurityGroupIngress",
"Effect": "Allow",
"Action": "elasticache:AuthorizeCacheSecurityGroupIngress",
"Resource": "*"
}
]
}