[Security] Add permissions to create/delete service linked roles created by ELB and ASG.

These permissions are required to create clusters with login nodes.

Signed-off-by: Giacomo Marciani <mgiacomo@amazon.com>

Author: gmarciani

CHANGELOG.md

@@ -12,6 +12,7 @@ CHANGELOG
 **BUG FIXES**
 - When mounting an external OpenZFS, it is no longer required to set the outbound rules for ports 111, 2049, 20001, 20002, 20003.
 - Fix an issue where changes in sequence of custom actions scripts were not detected during cluster updates. 
+- Add missing permissions for ParallelCluster API to create the service linked roles for Elastic Load Balancing and Auto Scaling, that are required to deploy login nodes.
 
 3.11.1
 ------

cloudformation/policies/parallelcluster-policies.yaml

@@ -489,6 +489,8 @@ Resources:
                 iam:AWSServiceName:
                   - fsx.amazonaws.com
                   - s3.data-source.lustre.fsx.amazonaws.com
+                  - elasticloadbalancing.amazonaws.com
+                  - autoscaling.amazonaws.com
           - Action:
               - lambda:CreateFunction
               - lambda:TagResource