Menu
Amazon DynamoDB
Developer Guide (API Version 2012-08-10)

Step 2: Create an IAM User and Policy

In this step, you create an IAM user with a policy that grants access to your Amazon DynamoDB Accelerator (DAX) cluster and to DynamoDB. You can then run applications that interact with your DAX cluster.

  1. Open the IAM console at https://console.aws.amazon.com/iam/.

  2. In the navigation pane, choose Users.

  3. Choose Add user.

  4. On the Details page, enter the following information:

    • User name—Type a unique name, for example: MyDAXUser.

    • Access type—Choose Programmatic access.

    Choose Next: Permissions.

  5. On the Set permissions page, choose Attach existing policies directly, and then choose Create policy.

  6. On the Create policy page, choose Create Your Own Policy.

  7. On the Review policy page, provide the following information:

    • Policy Name—Type a unique name. For example: MyDAXUserPolicy.

    • Description—Type a short description for the policy.

    • Policy Document—Copy and paste the following document:

      { "Version": "2012-10-17", "Statement": [ { "Action": [ "dax:*" ], "Effect": "Allow", "Resource": [ "*" ] }, { "Action": [ "dynamodb:*" ], "Effect": "Allow", "Resource": [ "*" ] } ] }

    Choose Create policy.

  8. Return to the Permissions page. In the list of policies, choose Refresh. To narrow the list of policies, choose Filter, Customer managed. Choose the IAM policy that you created in the previous step (for example: MyDAXUserPolicy), and then choose Next: Review.

  9. On the Review page, choose Create user.

  10. On the Complete page, go to the Secret access key and choose Show. After you do this, copy both the Access key ID and Secret access key. You need both of these identifiers for Step 3: Configure Your Amazon EC2 Instance.