C1W3: security group policy, no permission to change the inbound rules to customize TCP

For Graded Programming Assignment 2: Good Data Architecture:
I’m trying to modify the security rules such that only port 80 is allowed for the auto-load balancer. But got the error that I do not have the permission to do so.
the error message:

• “There was an error modifying your security group inbound rules”
• “You may be missing IAM policies that allow ModifySecurityGroupRules. You are not authorized to perform this operation. User: xxx is not authorized to perform: ec2:ModifySecurityGroupRules on resource: xxxx because no identity-based policy allows the ec2:ModifySecurityGroupRules action. Encoded authorization failure message:”
  
  

  Screenshot 2024-10-13 at 12.55.22 PM2304×464 31.5 KB

I tried:

1. accessing the IAM roles, but don’t have access to that neither.

Is there any permission/security access that I missed?
Thank you!

Hello @jessiiee,
It seems you try to modify the exisiting rule, instead you could try add a new rule with the details provided in step 5.5. That should fix your issue, thank you

Hi @jessiiee you should delete the existing rule and creating a new inbound rule that use the specifications asked in the lab