AWS Elemental MediaTailor
User Guide

Step 2: Create Policies

Create two policies for AWS Elemental MediaTailor: one to provide read/write access, and one to provide read-only access.

To create policies for AWS Elemental MediaTailor

  1. In the navigation pane of the IAM console, choose Policies.

  2. On the Policies page, create a policy named MediaTailorAllAccess that allows all actions on all resources in MediaTailor:

    1. Choose Create policy.

    2. Choose the JSON tab and paste the following policy:

      { "Version": "2012-10-17", "Statement": [ { "Action": [ "mediatailor:*" ], "Effect": "Allow", "Resource": "*" }, { "Action": [ "ec2:DescribeAvailabilityZones" ], "Effect": "Allow", "Resource": "*" }, { "Action": [ "cloudwatch:GetMetricStatistics" ], "Effect": "Allow", "Resource": "*" }, { "Action": [ "iam:PassRole" ], "Effect": "Allow", "Resource": "*" } ] }
    3. Choose Review policy.

    4. On the Review policy page, for Name, enter MediaTailorAllAccess, and then choose Create policy.

  3. On the Policies page, create a read-only policy named MediaTailorReadOnlyAccess for MediaTailor:

    1. Choose Create policy.

    2. Choose the JSON tab and paste the following read-only policy:

      { "Version": "2012-10-17", "Statement": [ { "Action": [ "mediatailor:GetPlaybackConfiguration", "mediatailor:ListPlaybackConfigurations", "mediatailor:ListTagsForResource" ], "Effect": "Allow", "Resource": "*" }, { "Action": [ "ec2:DescribeAvailabilityZones" ], "Effect": "Allow", "Resource": "*" }, { "Action": [ "cloudwatch:GetMetricStatistics" ], "Effect": "Allow", "Resource": "*" }, { "Action": [ "iam:PassRole" ], "Effect": "Allow", "Resource": "*" } ] }
    3. Choose Review policy.

    4. On the Review policy page, for Name, enter MediaTailorReadOnlyAccess, and then choose Create policy.