EC2

EC2 permissions are used for creating and managing virtual machines, Virtual Private Networks (VPCs), networking, and the security required for virtual desktops, autoscaling clusters, file storage servers, and HPC clusters.

Additional permissions may be applied depending on the choice you make for VPC management during the setup process.

Required EC2 Permissions

AllocateAddress

AssociateAddress

AssociateDhcpOptions

AssociateRouteTable

AttachNetworkInterface

AuthorizeSecurityGroupEgress

AuthorizeSecurityGroupIngress

CreateFleet

CreateImage

CreateLaunchTemplate

CreateLaunchTemplateVersion

CreateNetworkInterface

CreatePlacementGroup

CreateSecurityGroup

CreateTags

CreateVolume

DeleteLaunchTemplate

DeleteLaunchTemplateVersions

DeleteNetworkInterface

DeletePlacementGroup

DeleteSecurityGroup

DeleteTags

DeleteVolume

DescribeAddresses

DescribeAvailabilityZones

DescribeDhcpOptions

DescribeImages

DescribeInstanceAttribute

DescribeInstanceCreditSpecifications

DescribeInstanceStatus

DescribeInstanceTypeOfferings

DescribeInstanceTypes

DescribeInstances

DescribeInternetGateways

DescribeLaunchTemplateVersions

DescribeLaunchTemplates

DescribeNetworkAcls

DescribeNetworkInterfaces

DescribePlacementGroups

DescribeRegions

DescribeRouteTables

DescribeSecurityGroupRules

DescribeSecurityGroups

DescribeSubnets

DescribeVolumes

DeregisterImage

DescribeVpcs

DescribeVpcAttribute

DisassociateAddress

ModifyInstanceAttribute

ModifyLaunchTemplate

ModifyNetworkInterfaceAttribute

ModifyVolume

ModifyVolumeAttribute

RebootInstances

ReleaseAddress

RevokeSecurityGroupEgress

RevokeSecurityGroupIngress

RunInstances

StartInstances

StopInstances

TerminateInstances

Additional EC2 Permissions for VPC Management

During setup, you must specify how you want to manage VPCs:

Additional EC2 permissions may be applied depending on the choice made:

  • If Grant Ansys Gateway powered by AWS permission to create VPC on your behalf is selected, the following EC2 permissions are added:

    AttachInternetGateway

    CreateDhcpOptions

    CreateInternetGateway

    CreateRoute

    CreateRouteTable

    CreateSubnet

    CreateVpc

    DeleteDhcpOptions

    DeleteInternetGateway

    DeleteRoute

    DeleteRouteTable

    DeleteSubnet

    DeleteVpc

    DetachInternetGateway

    DisassociateRouteTable

    ModifySubnetAttribute

    ModifyVpcAttribute

  • If Use existing VPCs is selected, no additional permissions are added.

  • If I don't know which VPC I want to use yet is selected, no additional permissions are added.