The ability for IAM users to perform certain actions with Amazon EMR is controlled by IAM policies. IAM policies provide fine-grained control over the level of access and the criteria by which Amazon EMR grants access to IAM users.
At a minimum, an IAM user needs the following permission set in their IAM policy to access the Amazon EMR console:
In an IAM policy, to specify Amazon EMR actions, the action name must be prefixed with the
elasticmapreduce. You use wildcards to specify all actions
related to Amazon EMR. The wildcard
"*" matches zero or multiple characters.
For a complete list of Amazon EMR actions, see the API action names in the Amazon EMR API Reference. For more information about permissions and policies, see Permissions and Policies in theUsing IAM guide.