NavigationContentFooter
Jump toSuggest an edit

Auto-generated IAM resources

Reviewed on 27 January 2025

Sometimes Scaleway might automatically generate IAM resources, such as applications, groups and policies.

This allows policies to be set up with specific product resources as principals. These policies are created by Scaleway and can be managed by users to ensure more access management of resource permissions.

Any time Scaleway automatically creates or deletes an IAM resource, you will see it on your IAM logs.

Kubernetes KapsuleLink to this anchor

Currently, auto-generated IAM resources only occur in Kubernetes Kapsule when a cluster is created.

Whenever a cluster is created, automatically so are:

  • An IAM group containing all the nodes in the cluster as IAM applications
    Note

    The node IAM applications are not visible to users.

  • An IAM policy with default permission sets and the cluster group as a principal

The default policy can be edited by users to grant the cluster group permission according to their use-cases.

Was this page helpful?
API DocsScaleway consoleDedibox consoleScaleway LearningScaleway.comPricingBlogCareers
© 2023-2025 – Scaleway