I have been handed over a project that has been deployed, but the previous maintainers have left without any instructions.
I have been the project files and the state files. however, I am not getting it to even run a successful plan. The problem seems to be that it needs to access resources in more than one account.
The main file has an S3 backend specified where the state file is located, and then it has the profile specified. The plan runs for a while and then I eventually get an error “Error: InvalidParameterException: Identifier is for BBBBBBBB. Your accountId is AAAAAAAAA”. when I go through this error it seems to require access to another account S3 bucket, ALB, and SQS. I have gone and checked that account and I can’t find any roles or policy that allows the primary account to assume permissions there.
There is also just the one provided in the entire project.
Is there any way that I can specify another profile for it to use if it can’t access something with the default one, then use this one?
I know there is an option where you can specify another provided with an alias, however, I don’t know which modules I would specifically need to set to use the other alias.
I am also stuck on version 0.13.1 as I cannot do an update until I have been able to run a plan.