Creating an IAM role to allow Amazon Aurora to access Amazon services - Amazon Aurora
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Creating an IAM role to allow Amazon Aurora to access Amazon services

After creating an IAM policy to allow Aurora to access Amazon resources, you must create an IAM role and attach the IAM policy to the new IAM role.

To create an IAM role to permit your Amazon RDS cluster to communicate with other Amazon services on your behalf, take the following steps.

To create an IAM role to allow Amazon RDS to access Amazon services

  1. Open the IAM console.

  2. In the navigation pane, choose Roles.

  3. Choose Create role.

  4. Under Amazon service, choose RDS.

  5. Under Select your use case, choose RDS – Add Role to Database.

  6. Choose Next.

  7. On the Permissions policies page, enter the name of your policy in the Search field.

  8. When it appears in the list, select the policy that you defined earlier using the instructions in one of the following sections:

  9. Choose Next.

  10. In Role name, enter a name for your IAM role, for example RDSLoadFromS3. You can also add an optional Description value.

  11. Choose Create Role.

  12. Complete the steps in Associating an IAM role with an Amazon Aurora MySQL DB cluster.