I explained how I wrote a simple script in this post to enable and disable services for an AWS Organization.
I hit a couple of bugs noted in the post.
Either the error message is wrong or the function isn’t working.
When I tried to disable the artifact and cloudformation stacksets services, they said I was passing in an invalid principal — but I literally copied and pasted the service name from the documentation as I did with every other service.
Now, I have the service potentially disabled already so perhaps the error message results from the service already being disabled. But in that case, the request should simply be ignored. There’s no problem with that if it the result is what I requested.
But the error message says I’m not passing in a valid principal when I am — according to the documentation anyway. So either way I think this is a bug and something needs to be fixed.
It is, in any case, inconsistent with how every other service worked.
Follow for updates.
Teri Radichel | © 2nd Sight Lab 2023
The best way to support this blog is to sign up for the email list and clap for stories you like. If you are interested in IANS Decision Support services so you can schedule security consulting calls with myself and other IANS faculty, please reach out on LinkedIn via the link below. Thank you!
About Teri Radichel:
Author: Cybersecurity for Executives in the Age of Cloud
Presentations: Presentations by Teri Radichel
Recognition: SANS Difference Makers Award, AWS Security…