Service-linked role permissions for MediaTailor

Focus mode

Service-linked role permissions for MediaTailor - AWS Elemental MediaTailor

MediaTailor uses the service-linked role named AWSServiceRoleForMediaTailor – MediaTailor uses this service-linked role to invoke CloudWatch to create and manage log groups, log streams, and log events. This service-linked role is attached to the following managed policy: AWSMediaTailorServiceRolePolicy.

The AWSServiceRoleForMediaTailor service-linked role trusts the following services to assume the role:

mediatailor.amazonaws.com

The role permissions policy allows MediaTailor to complete the following actions on the specified resources:

Action: logs:PutLogEvents on arn:aws:logs:*:*:log-group:/aws/MediaTailor/*:log-stream:*
Action: logs:CreateLogStream, logs:CreateLogGroup, logs:DescribeLogGroups, logs:DescribeLogStreams on arn:aws:logs:*:*:log-group:/aws/MediaTailor/*

You must configure permissions to allow an IAM entity (such as a user, group, or role) to create, edit, or delete a service-linked role. For more information, see Service-Linked Role Permissions in the IAM User Guide.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Using service-linked roles

Creating a service-linked role

Select your cookie preferences

Customize cookie preferences

Essential

Performance

Functional

Advertising

Unable to save cookie preferences

Service-linked role permissions for MediaTailor

Did this page help you?

Next topic:

Previous topic:

Need help?