Bug 1806961

Summary: Missing ec2:DeleteSecurityGroup on AWS cloud provider doc
Product: OpenShift Container Platform Reporter: Pablo Alonso Rodriguez <palonsor>
Component: DocumentationAssignee: Kathryn Alexander <kalexand>
Status: CLOSED CURRENTRELEASE QA Contact: Xiaoli Tian <xtian>
Severity: low Docs Contact: Vikram Goyal <vigoyal>
Priority: low    
Version: 3.11.0CC: aos-bugs, jokerman
Target Milestone: ---   
Target Release: 3.11.z   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-04-13 15:22:24 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Pablo Alonso Rodriguez 2020-02-25 11:04:55 UTC 
Document URL: 

https://docs.openshift.com/container-platform/3.11/install_config/configuring_aws.html#configuring-aws-permissions

Section Number and Name: 

Configuring authorization for Amazon Web Services (AWS)

Describe the issue: 

Permission ec2:DeleteSecurityGroup is missing on AWS policy, so user experiences issues while removing LoadBalancer services in AWS due to OpenShift not being authorized to remove the security group.

Suggestions for improvement: 

Add the permission to the policy.

Additional information: 

OCP4 IAM policies already include this permission. Just the OCP 3.11 documentation needs to be fixed.
Comment 3 Kathryn Alexander 2020-03-31 13:41:47 UTC 
I'm merging this PR to address this bug: https://github.com/openshift/openshift-docs/pull/20773
Comment 5 Kathryn Alexander 2020-04-13 15:22:24 UTC 
This change is live on docs.openshift: https://docs.openshift.com/container-platform/3.11/install_config/configuring_aws.html#overview

and on the portal: https://access.redhat.com/documentation/en-us/openshift_container_platform/3.11/html-single/configuring_clusters/index#configuring-aws-permissions