Select the AWS service button, and the EC2 service type; click Next: Permissions to continue
When the Attach permissions policies
dialog (shown in Figure 3.9) opens, do not select a policy; instead, click Next:Tags
, then Next
When the Review dialog opens (shown in Figure 3.10), specify a name and description for the new role
and click the Create role
button. The new role will be displayed in the role list on the Amazon IAM Roles page. Click the role name to display detailed information about the role on the Summary dialog.
The Summary dialog will display a Role ARN, but the ARN will not be enabled until the security policy and trust policy are updated.
To modify the inline security policy, click the Add inline policy button; the button is located on the Permissions tab
(see Figure 3.11).
Navigate to the Trust relationships tab, and select the Edit Trust Relationship button to display the Policy Document (see Figure 3.13). Replace the displayed content of the policy document with the content of the security policy included in 0.
Click the Update Trust Policy button to finish.
The Summary dashboard (see Figure 3.14) will display values that you must provide when configuring your Ark console:
|The Role ARN associated with the service role must be provided in the Service Account Role ARN field.