AWS Elemental MediaLive
User Guide

Required Permissions in AWS Elemental MediaLive

There are several identities that must have permissions to work with MediaLive:

  • Any person who uses the console, the AWS CLI, or the REST API (through a REST client application) must have the appropriate permissions to perform operations in MediaLive. To grant access for yourself and others, you create identities known as IAM users.

  • Any software application that is using the REST API or an SDK must have the appropriate permissions to perform operations in MediaLive. To grant access, you create IAM users for the software applications.

  • MediaLive itself must be an IAM trusted entity to make calls to the APIs of Amazon EC2 Systems Manager Parameter Store, Amazon S3 (if you plan to store or retrieve assets using this service) and MediaStore (if you plan to store or retrieve assets using this service). It's highly likely that MediaLive will need to be set up in this way.

  • The person who sets up MediaLive as a trusted entity needs read and write access with AWS IAM. See Setting Up Permissions for AWS Elemental MediaLive .