Creating an IAM Role for SecureCloud Parent topic

Procedure

  1. Go to Roles on the the Amazon Web Services Management Console.
  2. Click Create New Role.
    prep_aws_create_new_role.jpg
  3. Specify a role name and click Continue.
    prep_aws_name.jpg
  4. On the Select Role Type screen, open AWS Service Roles, and select Amazon EC2.
    prep_aws_role.jpg
  5. On the Establish Trust screen, click Continue.
  6. On the Set Permissions screen, select Policy Generator.
    prep_aws_permissions.jpg
  7. On the Edit Permissions screen, configure the following policy.
    1. For Effect, select Allow
    2. For AWS Service, select Amazon EC2.
    3. For Actions, select the following:
      • DescribeInstances
      • ModifyInstanceAttribute
      • StartInstances
      • StopInstances
      • DescribeImages
      The box displays "5 Action(s) Selected".
    4. For Amazon Resource Name (ARN), type an asterisk (*).
    5. Click Add Statement.
      prep_aws_add_statement.jpg
    6. Click Continue, and then on the Set Permissions screen, click Continue again.
  8. Review the role information on the following screen, and click Create Role.
    The IAM role appears on the the Roles screen.
    prep_aws_result_complete.jpg
    When configuring an Amazon EC2 instance for SecureCloud, use a role set with these permissions. Refer to Preparing Amazon EC2 Instances for more information.