What is the new policy action needed to allow the new DescribeSecurityGroupRules

amazon-ec2 amazon-iam

Found the solution: seems like the option DescribeSecurityGroupRules is not yet available through the IAM UI but you can manually add it via JSON editing.

Yes, the UI will say the option does not exist:

enter image description here

But if you save the policy, it will work.

This tweet has helped me: https://twitter.com/AWSSupport/status/1413285145663184897

Related

how openshift service loadbalance between pods?
Fetchmail does not use the indicated protocol
Iptables --reject-with tcp-reset for non-TCP traffic
Unable to send email to gmail account from my mail server
Restricting swap usage for a systemd service in Ubuntu 18.04
Raid 10 - 6 Disk - Dell MD3200
How to link godaddy domain name to google compute engine?
Nginx keepalive when using a UNIX socket
What happens to logs generated by logger if there is no logging daemon installed or active
Fail2ban on CentOS 7 with Docker-powered Traefik ban OK without iptables rule addition
GPO StartLayout Never Applies
IOS Enterprise Distribution Through OTA