github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/iam/AVD-AWS-0169/Management_Console.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/iam/AVD-AWS-0169/Management_Console.md (about)

     1  1. Open the IAM console at [https://console.aws.amazon.com/iam/](https://console.aws.amazon.com/iam/)-   .
     2  2. In the IAM navigation pane, choose **Roles**, then choose **Create role**.
     3  3. For **Role type**, choose the **Another AWS account**.
     4  4. For **Account ID**, enter the AWS account ID of the AWS account to which you want to grant access to your resources. If the users or groups that will assume this role are in the same account, then enter the local account number.
     5  5. Choose **Next: Permissions**.
     6  6. Search for the managed policy `AWSSupportAccess`.
     7  7. Select the check box for the `AWSSupportAccess` managed policy.
     8  8. Choose **Next: Tags**.
     9  9. (Optional) To add metadata to the role, attach tags as key–value pairs. For more information about using tags in IAM, see [Tagging IAM users and roles](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) in the _IAM User Guide_.
    10  10. Choose **Next: Review**.
    11  11. For **Role name**, enter a name for your role. Role names must be unique within your AWS account. They are not case sensitive.
    12  12. (Optional) For **Role description**, enter a description for the new role.
    13  13. Review the role, then choose **Create role**.