Fix assume role for secops

binbashar · Sep 14, 2021 · eab0067 · eab0067
1 parent 0ce0a55
commit eab0067
Showing 1 changed file with 5 additions and 5 deletions.
diff --git a/security/base-identities/groups_policies.tf b/security/base-identities/groups_policies.tf
@@ -48,11 +48,11 @@ resource "aws_iam_policy" "assume_secops_role" {
                 "sts:AssumeRole"
             ],
             "Resource": [
-                "arn:aws:iam::${var.shared_account_id}:role/DevOps",
-                "arn:aws:iam::${var.network_account_id}:role/DevOps",
-                "arn:aws:iam::${var.security_account_id}:role/DevOps",
-                "arn:aws:iam::${var.appsdevstg_account_id}:role/DevOps",
-                "arn:aws:iam::${var.appsprd_account_id}:role/DevOps"
+                "arn:aws:iam::${var.shared_account_id}:role/SecOps",
+                "arn:aws:iam::${var.network_account_id}:role/SecOps",
+                "arn:aws:iam::${var.security_account_id}:role/SecOps",
+                "arn:aws:iam::${var.appsdevstg_account_id}:role/SecOps",
+                "arn:aws:iam::${var.appsprd_account_id}:role/SecOps"
             ]
         }
     ]