We are trying to set up DynamoDB backups for additional accounts within an organization. We have the EC2 instances backing up using STS Assume Roles. Do we need to add the DynamoDB permissions to that assume role? Do we need permissions added to the top level VSA as well? Is the best practice to provide access a different way? Can we even use the assume role?
Best answer by Mike StrueningView original