Access control for the AWS Marketplace Deployment API

To manage deployments in AWS Marketplace, you must ensure that you have the necessary AWS Identity and Access Management (IAM) roles and permissions.

Before calling the PutDeploymentParameter action, buyers must create the AWSServiceRoleForMarketplaceDeployment service-linked role. This provides AWS Marketplace with the permissions required to create, manage, and tag the necessary deployment parameter related resources in the buyer’s account. Buyers create this role using prompts as they progress through the configuration process for any Quick Launch experience. For more information, see Using roles to configure and launch products in AWS Marketplace Buyer Guide.

To call PutDeploymentParameter, sellers must have IAM permissions for the following actions:


{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": [
                "aws-marketplace:PutDeploymentParameter",
                "aws-marketplace:TagResource"
            ],
            "Effect": "Allow",
            "Resource": "*"
        }
    ]
}

The aws-marketplace:PutDeploymentParameter action permits the user to call the PutDeploymentParameter API. The API also accepts an optional tags attribute. If the tags attribute is included in the request, the caller must also have permissions for aws-marketplace:TagResource on the relevant resource. For more information about creating users, see Creating a user in your AWS account in the IAM User Guide. For more information about creating and assigning policies, see Changing permissions for an IAM user.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Access for the Entitlement API

Access for the Discovery API