elasticache:RevokeCacheSecurityGroupIngress is a Write access-level action in the elasticache service. Grants permission to remove an EC2 security group ingress from a ElastiCache security group
ARNs that elasticache:RevokeCacheSecurityGroupIngress can be scoped to in an IAM policy.
Keys you can use in the Condition block of a policy that grants elasticache:RevokeCacheSecurityGroupIngress.
Filters actions based on the tags that are passed in the request
Filters actions based on the tags associated with the resource
Filters actions based on the tag keys that are passed in the request
A minimal policy that allows elasticache:RevokeCacheSecurityGroupIngress. Replace "Resource": "*" with a specific ARN to follow least privilege.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowElasticacheRevokeCacheSecurityGroupIngress",
"Effect": "Allow",
"Action": "elasticache:RevokeCacheSecurityGroupIngress",
"Resource": "*"
}
]
}