Amazon Elastic MapReduce
Developer Guide

Set Access Policies for IAM Users

This documentation is for AMI versions 2.x and 3.x of Amazon EMR. See the Amazon EMR Release Guide for information about Amazon EMR releases 4.0.0 and above. For information about managing the Amazon EMR service in 4.x releases, see the Amazon EMR Management Guide.

The ability for IAM users to perform certain actions with Amazon EMR is controlled by IAM policies. IAM policies provide fine-grained control over the level of access and the criteria by which Amazon EMR grants access to IAM users.


At a minimum, an IAM user needs the following permission set in their IAM policy to access the Amazon EMR console:


In an IAM policy, to specify Amazon EMR actions, the action name must be prefixed with the lowercase string elasticmapreduce. You use wildcards to specify all actions related to Amazon EMR. The wildcard "*" matches zero or multiple characters.

For a complete list of Amazon EMR actions, see the API action names in the Amazon EMR API Reference. For more information about permissions and policies, see Permissions and Policies in theIAM User Guide guide.