Create IAM roles for your compute environments and container instances - Amazon Batch
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Create IAM roles for your compute environments and container instances

Your Amazon Batch compute environments and container instances require Amazon Web Services account credentials to make calls to other Amazon APIs on your behalf. Create an Amazon Identity and Access Management role that provides these credentials to your compute environments and container instances, then associate that role with your compute environments.

Note

To verify that your Amazon Web Services account has the required permissions, see Initial IAM service set up for your account.

The Amazon Batch compute environment and container instance roles are automatically created for you in the console first-run experience. So, if you intend to use the Amazon Batch console, you can move ahead to the next section. If you plan to use the Amazon CLI instead, complete the procedures in Use service-linked roles for Amazon Batch, Amazon ECS instance role, and Tutorial: Create the IAM execution role before creating your first compute environment.