diff --git a/lib/addons/aws-loadbalancer-controller/iam-policy.ts b/lib/addons/aws-loadbalancer-controller/iam-policy.ts index 3e91b1fe6..6bf54e5d4 100644 --- a/lib/addons/aws-loadbalancer-controller/iam-policy.ts +++ b/lib/addons/aws-loadbalancer-controller/iam-policy.ts @@ -37,7 +37,9 @@ export const AwsLoadbalancerControllerIamPolicy = (partition: string) => { "elasticloadbalancing:DescribeTargetGroups", "elasticloadbalancing:DescribeTargetGroupAttributes", "elasticloadbalancing:DescribeTargetHealth", - "elasticloadbalancing:DescribeTags" + "elasticloadbalancing:DescribeTags", + "elasticloadbalancing:DescribeTrustStores", + "elasticloadbalancing:DescribeListenerAttributes" ], "Resource": "*" }, @@ -186,7 +188,8 @@ export const AwsLoadbalancerControllerIamPolicy = (partition: string) => { "elasticloadbalancing:DeleteLoadBalancer", "elasticloadbalancing:ModifyTargetGroup", "elasticloadbalancing:ModifyTargetGroupAttributes", - "elasticloadbalancing:DeleteTargetGroup" + "elasticloadbalancing:DeleteTargetGroup", + "elasticloadbalancing:ModifyListenerAttributes" ], "Resource": "*", "Condition": {