Grant IAM permissions to request access to Amazon Bedrock foundation models
Before you can request access, or modify access, to Amazon Bedrock foundation models, you need to attach an identity-based IAM policy with the following AWS Marketplace actions to the IAM role that allows access to Amazon Bedrock:
-
aws-marketplace:Subscribe
-
aws-marketplace:Unsubscribe
-
aws-marketplace:ViewSubscriptions
For information creating the policy, see I already have an AWS account.
For the aws-marketplace:Subscribe
action only, you can use the aws-marketplace:ProductId
condition key to restrict subscription to specific models.
Note
You can't remove request access from the Amazon Titan, Mistral AI, and Meta Llama 3 Instruct models. You can prevent users from making inference calls to these models by using an IAM policy and specifying the model ID. For more information, see Deny access for inference on specific models.
The following table lists product IDs for Amazon Bedrock foundation models:
The following is the format of the IAM policy you can attach to a role to control model access permissions:
Model | Product ID |
---|---|
AI21 Labs Jurassic-2 Mid | 1d288c71-65f9-489a-a3e2-9c7f4f6e6a85 |
AI21 Labs Jurassic-2 Ultra | cc0bdd50-279a-40d8-829c-4009b77a1fcc |
AI21 Jamba-Instruct | prod-dr2vpvd4k73aq |
AI21 Labs Jamba 1.5 Large | prod-evcp4w4lurj26 |
AI21 Labs Jamba 1.5 Mini | prod-ggrzjm65qmjhm |
Anthropic Claude | c468b48a-84df-43a4-8c46-8870630108a7 |
Anthropic Claude Instant | b0eb9475-3a2c-43d1-94d3-56756fd43737 |
Anthropic Claude 3 Sonnet | prod-6dw3qvchef7zy |
Anthropic Claude 3.5 Sonnet | prod-m5ilt4siql27k |
Anthropic Claude 3.5 Sonnet v2 | prod-cx7ovbu5wex7g |
Anthropic Claude 3 Haiku | prod-ozonys2hmmpeu |
Anthropic Claude 3.5 Haiku | prod-5oba7y7jpji56 |
Anthropic Claude 3 Opus | prod-fm3feywmwerog |
Cohere Command | a61c46fe-1747-41aa-9af0-2e0ae8a9ce05 |
Cohere Command Light | 216b69fd-07d5-4c7b-866b-936456d68311 |
Cohere Command R | prod-tukx4z3hrewle |
Cohere Command R+ | prod-nb4wqmplze2pm |
Cohere Embed (English) | b7568428-a1ab-46d8-bab3-37def50f6f6a |
Cohere Embed (Multilingual) | 38e55671-c3fe-4a44-9783-3584906e7cad |
Meta Llama 2 13B | prod-ariujvyzvd2qy |
Meta Llama 2 70B | prod-2c2yc2s3guhqy |
Stable Diffusion XL 1.0 | prod-2lvuzn4iy6n6o |
Stable Image Core 1.0 | prod-eacdrmv7zfc5e |
Stable Diffusion 3 Large 1.0 | prod-cqfmszl26sxu4 |
Stable Image Ultra 1.0 | prod-7boen2z2wnxrg |
{ "Version": "2012-10-17", "Statement": [ { "Effect": "
Allow|Deny
", "Action": [ "aws-marketplace:Subscribe" ], "Resource": "*", "Condition": { "ForAnyValue:StringEquals": { "aws-marketplace:ProductId": [model-product-id-1
,model-product-id-2
, ... ] } } }, { "Effect": "Allow|Deny
", "Action": [ "aws-marketplace:Unsubscribe" "aws-marketplace:ViewSubscriptions" ], "Resource": "*" } ] }
To see an example policy, refer to Allow access to third-party model subscriptions.