SYNOPSIS

euare-roleaddpolicy -r ROLE -p POLICY -e {Allow,Deny} -a ACTIONS -c RESOURCES [-o] [--as-account ACCOUNT] [-U URL] [--region USER@REGION] [-I KEY_ID] [-S KEY] [--security-token TOKEN] [--debug] [--debugger] [--version] [-h]

DESCRIPTION

Add a new policy to a role. To add more complex policies than this tool supports, see euare-roleuploadpolicy.

optional arguments:

-r ROLE, --role-name ROLE

role to attach the policy to (required)

-p POLICY, --policy-name POLICY

name of the new policy (required)

-e {Allow,Deny}, --effect {Allow,Deny}

whether the new policy should Allow or Deny (required)

-a ACTIONS, --action ACTIONS

action(s) the policy should apply to (at least one required)

-c RESOURCES, --resource RESOURCES

resource(s) the policy should apply to (at least one required)

-o, --output

also display the newly-created policy

--as-account ACCOUNT

[Eucalyptus cloud admin only] run this command as the administrator of another account

-U URL, --url URL

identity service endpoint URL

--region USER@REGION

region and/or user names to search when looking up config file data

-I KEY_ID, --access-key-id KEY_ID

-S KEY, --secret-key KEY

--security-token TOKEN

--debug

show debugging output

--debugger

launch interactive debugger on error

--version

show the program's version and exit

-h, --help

show this help message and exit