Applies to Roles (in environments)

  • System Administrator (DEV, UAT, NFT, PROD)

In order for user to be able to provision Amazon Web Services (AWS) resources (EC2,RDS,SES,etc.) it is necessary to create Athena AWS Run user in AWS IAM

In case if a platform domain is managed in a separate AWS account it is also necessary to create AWS Route53 Run user in that particular AWS account

Access required

  • Platform Owner

Athena AWS Run user group

  • Open AWS IAM.
  • Open Groups, create new group AthenaRuners. IAM
  • Attach AWS policies AmazonRDSFullAccess, AmazonS3FullAccess, AmazonEC2FullAccess, IAMFullAccess, AmazonSESFullAccess, AmazonVPCFullAccess, AmazonRoute53FullAccess to a group. IAM Policies

Athena AWS Run user

  • Add IAM user to newly created group, download users AWS access ID and KEY and provide them to the user

Athena AWS Route53 Run user group

  • Open AWS IAM.

  • Open Groups, create new group AthenaRuners. IAM

  • Attach AWS policies AmazonRoute53FullAccess to a group. IAM Policies

Athena AWS Route53 Run user

  • Add IAM user to newly created group, download users AWS access ID and KEY and provide them to the user