Guided Walkthroughs

Configuration Packages

Custom Packages

By Implementation

Service Control PoliciesConfig RulesAuto Remediation RulesConformance PacksAmazon GuardDutyAmazon InspectorAWS Security HubAWS Network FirewallRoute53 Resolver SecurityAmazon MacieS3 Bucket PoliciesCloudWatch Alarms and Event RulesAWS WAFAWS Secrets ManagerAWS Systems ManagerSecurity Groups & NACLsAWS KMSAWS SSOIAM PoliciesVPC Endpoint PoliciesCloudFormation Guard RulesLoad BalancersRDS Event SubscriptionsAWS Resource Access Manager (RAM)

By Service Protected

Reference Guides

Other

IAM Security Controls

IAM Role

Configuration for creating an IAM role in an AWS account and optionally an EC2 Instance Profile. The template also includes options for customizing the access granted to the role using inline and managed IAM policies.

The following settings are available in this template: 

  • Role Name and Description
  • EC2 Instance Profile to create an instance profile along with the IAM role
  • Trust Policy: settings to update the role's trust policy to specify the entities that can assume the role 
  • IAM Policies
    • Managed policies: specify already existing managed IAM policies in the AWS account
    • Inline policies: define new inline policies attached to the IAM role
  • Additional settings such as Role Path, Session Duration
  • Permission Boundary to specify the IAM policy ARN that will be used as the permission boundary for the role
Items
1
Size
0.3 KB
AWSTemplateFormatVersion: "2010-09-09"
Description: ""
Resources:
  IamRole:
    Type: "AWS::IAM::Role"
    Properties:
      Path: "/"
      MaxSessionDuration: 3600
      AssumeRolePolicyDocument:
        Version: "2012-10-17"
        Statement: []
Parameters: {}
Metadata: {}
Conditions: {}

Actions



Customize Template

Role Settings

Trust Policy

IAM Policies

Additional Settings

* Required field

Upgrade to Premium for More Features

Guided Walkthroughs
Step-by-step configuration wizards for your environment
Dedicated Security Account
AWS Backup Strategy
VPC Connectivity Setup
Automated Patching
All Guides
Configuration Packages
Pre-built packages for common configuration
Common SCPs
CloudFormation Guard Rules
Auto Remediation Rules
IAM Monitoring & Compliance
All Packages
Automated Assessments
  • 350+ security checks
  • Well-architected reviews
  • Detailed compliance reports
  • Remediation templates
  • Email summaries
  • Learn more