AWS managed policy: AWSApplicationMigrationMGHAccess

This policy allows AWS Application Migration Service (AWS MGN) to send metadata about the progress of servers being migrated using AWS MGN to AWS Migration Hub (MGH). AWS MGN automatically creates an IAM role with this policy attached and assumes this role. We do not recommend that you attach this policy to your users or roles. Migration-progress data is only sent after the AWS "home region” is set in AWS MGH. If the Home AWS Region is different than the AWS Region into which a server is being migrated, this data will be sent cross-region. To stop AWS MGN from sending this metadata to AWS MGH, detach it from your users or roles.

Permissions details

This policy includes the following permissions.


{
        "Version": "2012-10-17",
        "Statement": [
                {
                        "Effect": "Allow",
                        "Action": [
                                "mgh:AssociateCreatedArtifact",
                                "mgh:CreateProgressUpdateStream",
                                "mgh:DisassociateCreatedArtifact",
                                "mgh:GetHomeRegion",
                                "mgh:ImportMigrationTask",
                                "mgh:NotifyMigrationTaskState",
                                "mgh:PutResourceAttributes"
                        ],
                        "Resource": "*"
                }
        ]
}

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

AWSApplicationMigrationAgentPolicy

AWSApplicationMigrationFullAccess