From 1a9ff8e92afca1ded4ee8f27839d9d25448be92a Mon Sep 17 00:00:00 2001
From: Francesco Cheinasso <francesco.cheinasso@staff.aruba.it>
Date: Fri, 7 Apr 2023 17:00:16 +0200
Subject: [PATCH] Docs: EKS minimum permissions required

---
 docs/installation/install.md | 37 ++++++++++++++++++++++++++++++++++++
 1 file changed, 37 insertions(+)

diff --git a/docs/installation/install.md b/docs/installation/install.md
index f655f6551e..59160295fe 100644
--- a/docs/installation/install.md
+++ b/docs/installation/install.md
@@ -135,6 +135,43 @@ In a nutshell, after having installed the CLI, you have to set up your identity:
 aws configure
 ```
 
+You can install Liqo even if you are not an EKS administrator.
+The minimum **IAM** permissions required by a user to install Liqo are the following:
+
+```json
+{
+    "Version": "2012-10-17",
+    "Statement": [
+        {
+            "Effect": "Allow",
+            "Action": [
+                "eks:DescribeCluster",
+                "iam:CreateUser",
+                "iam:CreateAccessKey",
+                "ec2:DescribeVpcs"
+            ],
+            "Resource": "*"
+        },
+        {
+            "Effect": "Allow",
+            "Action": [
+                "iam:CreatePolicy",
+                "iam:GetPolicyVersion",
+                "iam:GetPolicy",
+                "iam:AttachUserPolicy",
+                "iam:GetUser",
+                "iam:TagUser",
+                "iam:ListAccessKeys"
+            ],
+            "Resource": [
+                "arn:aws:iam::*:user/liqo-*",
+                "arn:aws:iam::*:policy/liqo-*"
+            ]
+        }
+    ]
+}
+```
+
 Before continuing, you should export a few variables about the properties of your cluster:
 
 ```bash