IAM policies for capacity reservations

To use the visual editor in the IAM console to create a capacity reservation policy

1. Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.

2. In the navigation pane on the left, choose Policies, and then choose Create policy.

3. On the Visual editor tab, choose Choose a service. Then choose Athena to add to the policy.

4. Choose Select actions, and then choose the actions to add to the policy. The visual editor shows the actions available in Athena. For more information, see Actions, resources, and condition keys for Amazon Athena in the Service Authorization Reference.

5. Choose add actions to type a specific action or use wild card characters (*) to specify multiple actions.

   By default, the policy that you are creating allows the actions that you choose. If you chose one or more actions that support resource-level permissions to the capacity-reservation resource in Athena, then the editor lists the capacity-reservation resource.

6. Choose Resources to specify the specific capacity reservations for your policy. For example JSON capacity reservation policies, see Example capacity reservation policies.

7. Specify the capacity-reservation resource as follows:

   arn:aws:athena:<region>:<user-account>:capacity-reservation/<capacity-reservation-name>

8. Choose Review policy, and then type a Name and a Description (optional) for the policy that you are creating. Review the policy summary to make sure that you granted the intended permissions.

9. Choose Create policy to save your new policy.

10. Attach this identity-based policy to a user, a group, or role.