Preparing the System / Creating IAM Policies |
AWS Identity & Access Management (IAM) manages credentials for the Cluster Manager and its nodes by assigning IAM roles to them when they are launched. Attaching policies to these roles grant the associated instances permissions such as starting, stopping, and terminating instances in EC2, associating IAM roles with a new instance, or updating records in the Route 53 service.
The EC2 IAM Policy allows the Cluster Manager and its nodes to perform actions on EC2 instances, such as starting, stopping, and terminating instances. The Cluster Manager requires this policy to start and manage nodes. The following instructions describe how to create the EC2 IAM policy.