antyuntyun

<h1 id="ec2">
<a class="header-anchor-link" href="#ec2" aria-hidden="true"></a> ec2</h1>
<h2 id="sg">
<a class="header-anchor-link" href="#sg" aria-hidden="true"></a> sg</h2>
<h3 id="%E7%89%B9%E5%AE%9A%E3%81%AE%E3%82%BF%E3%82%B0%E5%90%8D%E3%81%8C%E3%81%A4%E3%81%84%E3%81%9Fsg%E3%81%AE%E3%81%BF%E3%81%AB%E7%B7%A8%E9%9B%86%E6%A8%A9%E9%99%90%E4%BB%98%E4%B8%8E">
<a class="header-anchor-link" href="#%E7%89%B9%E5%AE%9A%E3%81%AE%E3%82%BF%E3%82%B0%E5%90%8D%E3%81%8C%E3%81%A4%E3%81%84%E3%81%9Fsg%E3%81%AE%E3%81%BF%E3%81%AB%E7%B7%A8%E9%9B%86%E6%A8%A9%E9%99%90%E4%BB%98%E4%B8%8E" aria-hidden="true"></a> 特定のタグ名がついたsgのみに編集権限付与</h3>
<div class="code-block-container"><pre class="language-json"><code class="language-json">{
 "Version": "2012-10-17",
 "Statement": [
 {
 "Effect": "Deny",
 "Action": [
 "ec2:ModifySecurityGroupRules"
 ],
 "Resource": [
 "arn:aws:ec2:*:*:security-group/*"
 ],
 "Condition": {
 "StringNotEquals": {
 "ec2:ResourceTag/Name": "tag_name"
 }
 }
 },
 {
 "Effect": "Allow",
 "Action": [
 "ec2:*"
 ],
 "Resource": "*"
 }
 ]
}
</code></pre></div>