IAM Role: AWS/ACM/ReadOnly
| Permission | Grant |
|---|---|
| acm-pca:GetCertificate | ReadOnly |
| acm-pca:GetCertificateAuthorityCertificate | ReadOnly |
| acm-pca:GetCertificateAuthorityCsr | ReadOnly |
| acm-pca:GetPolicy | Metadata |
| acm-pca:ListCertificateAuthorities | Metadata |
| acm-pca:ListPermissions | Metadata |
| acm-pca:ListTags | Metadata |
| acm:DescribeCertificate | Metadata |
| acm:GetAccountConfiguration | Metadata |
| acm:GetCertificate | Metadata |
| acm:ListCertificates | Metadata |
| acm:ListTagsForCertificate | Metadata |