AWS Elastic Load Balancing (IAM)

aws networking

Distributes incoming application or network traffic across multiple targets, such as EC2 instances, containers, and IP addresses, in multiple Availability Zones.

Common permissions

elasticloadbalancing:DescribeLoadBalancerselasticloadbalancing:DescribeTargetGroupselasticloadbalancing:DescribeTargetHealthelasticloadbalancing:DescribeListenerselasticloadbalancing:DescribeRuleselasticloadbalancing:DescribeTags

Least-privilege example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "elasticloadbalancing:DescribeLoadBalancers",
        "elasticloadbalancing:DescribeTargetGroups",
        "elasticloadbalancing:DescribeTargetHealth",
        "elasticloadbalancing:DescribeListeners",
        "elasticloadbalancing:DescribeRules",
        "elasticloadbalancing:DescribeTags"
      ],
      "Resource": "*"
    }
  ]
}

Warnings

Avoid elasticloadbalancing:* — grants full control including creating, modifying, and deleting load balancers and their components.
Avoid elasticloadbalancing:DeleteLoadBalancer — allows deletion of load balancers, causing service disruption.

Resources

AWS referenceservicereference.us-east-1.amazonaws.com/v1/elasticloadbalancing/elasticloadbalancing.json ↗

API

full doc /v1/iam/elasticloadbalancing