Creating required IAM resources for homogeneous data migrations in AWS DMS
To run homogeneous data migrations, you must create an IAM policy and an IAM role in your account to interact with other AWS services. In this section, you create these required IAM resources.
Topics
Creating an IAM policy for homogeneous data migrations in AWS DMS
To access your databases and to migrate data, with AWS DMS, you can create a serverless environment for homogeneous data migrations. Also, AWS DMS stores logs, metrics, and progress for each data migration in Amazon CloudWatch. To create a data migration project, AWS DMS needs access to these services.
In this step, you create an IAM policy that provides AWS DMS with access to Amazon EC2 and CloudWatch resources. Next, create an IAM role and attach this policy.
To create an IAM policy for homogeneous data migrations in AWS DMS
Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/
. In the navigation pane, choose Policies.
Choose Create policy.
In the Create policy page, choose the JSON tab.
Paste the following JSON into the editor.
Choose Next.
Enter
HomogeneousDataMigrationsPolicy
for Policy name, and choose Create policy.
Creating an IAM role for homogeneous data migrations in AWS DMS
In this step, you create an IAM role that provides AWS DMS with access to AWS Secrets Manager, Amazon EC2, and CloudWatch.
When creating an IAM role, you must also create a dms-vpc-role
. For
more information, see Creating an IAM role for AWS DMS to manage Amazon VPC
in the Amazon Relational Database Service User
Guide.
To create an IAM role for homogeneous data migrations in AWS DMS
Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/
. In the navigation pane, choose Roles.
Choose Create role.
On the Select trusted entity page, for Trusted entity type, choose AWS Service. For Use cases for other AWS services, choose DMS.
Select the DMS check box and choose Next.
On the Add permissions page, choose HomogeneousDataMigrationsPolicy that you created before.
On the Name, review, and create page, enter
HomogeneousDataMigrationsRole
for Role name, and choose Create role.Choose Update policy.