AWS dms documentation change
Summary
Added detailed IAM policy for S3 validation requirements
Security assessment
The change documents granular permissions needed for secure data validation workflows
Diff
diff --git a/dms/latest/userguide/CHAP_Validating_S3.md b/dms/latest/userguide/CHAP_Validating_S3.md index f17752ae9..91215992c 100644 --- a//dms/latest/userguide/CHAP_Validating_S3.md +++ b//dms/latest/userguide/CHAP_Validating_S3.md @@ -57,0 +58,48 @@ To set up access for using S3 target validation, ensure that the role assigned t +JSON + + +**** + + + + { + "Version":"2012-10-17", + "Statement": [ + { + "Sid": "VisualEditor0", + "Effect": "Allow", + "Action": [ + "athena:StartQueryExecution", + "athena:GetQueryExecution", + "athena:CreateWorkGroup" + ], + "Resource": "*" + }, + { + "Effect": "Allow", + "Action": [ + "glue:CreateDatabase", + "glue:DeleteDatabase", + "glue:GetDatabase", + "glue:GetTables", + "glue:CreateTable", + "glue:DeleteTable", + "glue:GetTable" + ], + "Resource": "*" + }, + { + "Effect": "Allow", + "Action": [ + "s3:GetBucketLocation", + "s3:GetObject", + "s3:ListBucketMultipartUploads", + "s3:AbortMultipartUpload", + "s3:ListMultipartUploadParts" + ], + "Resource": "*" + } + ] + } + +