Step 3: Generating an IAM User - AWS Device Farm

Step 3: Generating an IAM User

AWS Identity and Access Management (IAM) helps you manage permissions and policies for working with AWS resources. This topic walks you through generating an IAM user with permissions to access AWS Device Farm resources.

If you haven't done so already, complete steps 1 and 2 before generating an IAM user.

We recommend that you do not use your AWS root account to access Device Farm. Instead, create a new IAM user (or use an existing IAM user) in your AWS account, and then access Device Farm with that IAM user.


The AWS root account or IAM user that you use to complete the following steps must have permission to create the following IAM policy and attach it to the IAM user. For more information, see Working with Policies.

To create a new user with the proper access policy in IAM

  1. Open the IAM console at

  2. Choose Users.

  3. Choose Create New Users.

  4. Enter the user name of your choice.

    For example, GradleUser.

  5. Choose Create.

  6. Choose Download Credentials and save them in a location where you can easily retrieve them later.

  7. Choose Close.

  8. Choose the user name in the list.

  9. Under Permissions, expand the Inline Policies header by clicking the down arrow on the right.

  10. Choose Click here where it says, There are no inline policies to show. To create one, click here.

  11. On the Set Permissions screen, choose Custom Policy.

  12. Choose Select.

  13. Give your policy a name, such as AWSDeviceFarmGradlePolicy.

  14. Paste the following policy into Policy Document.

    { "Version": "2012-10-17", "Statement": [ { "Sid": "DeviceFarmAll", "Effect": "Allow", "Action": [ "devicefarm:*" ], "Resource": [ "*" ] } ] }
  15. Choose Apply Policy.

Next step: Configuring Test Types.

For more information, see Creating an IAM User (AWS Management Console) or Setting Up.