Prerequisites - Spatial Data Management on AWS
AWS Account RequirementsPermission RequirementsKnowledge RequirementsDeployment Modes

Prerequisites

AWS Account Requirements

  • Active AWS account with appropriate permissions

  • Don’t use the AWS Organizations management account – Deploy to a member account instead. The management account should be used only for AWS Organizations administrative tasks. For details, see AWS Organizations Best Practices.

  • AWS Command Line Interface (AWS CLI) configured with credentials (optional)

  • AWS CloudFormation stack creation permissions

  • Selected deployment AWS Region

Permission Requirements

Before deploying the Spatial Data Management solution, verify that your AWS user or role has the necessary permissions to create and manage AWS resources.

Console Access Check

Verify you can access and create resources in these AWS Console sections:

Core Services (Required):

  • CloudFormation

  • IAM

  • Amazon S3

  • AWS Lambda

  • Amazon DynamoDB

  • AWS KMS

Application Services (Required):

  • Amazon Cognito

  • Amazon API Gateway

  • Amazon OpenSearch

  • Amazon VPC/EC2

  • Amazon CloudWatch Logs

  • AWS Deadline Cloud

  • Amazon Location Services

Content & Security Services (Required):

  • Amazon CloudFront

  • AWS Secrets Manager

  • AWS Systems Manager

  • Amazon SQS

  • Amazon EventBridge

  • Amazon Verified Permissions

Analytics Services (Required):

  • AWS Glue

  • Amazon Athena

  • AWS CloudTrail

Troubleshooting Permission Issues

If deployment fails with permission errors:

  1. Check CloudFormation Events in the AWS Console for specific error messages

  2. Look for "Access Denied" errors in the stack events

  3. Verify you can access the failing service in the AWS Console

  4. Contact your AWS administrator to grant missing permissions

Knowledge Requirements

  • Basic understanding of AWS services

  • Familiarity with AWS CloudFormation

Deployment Modes

You can configure the deployment mode during AWS CloudFormation deployment. These modes provide simpler configuration options for proof of concept or test environments. Both modes are feature compatible.

Development Mode

  • Reduced provisioned concurrency

  • Suitable for testing and development

Production Mode

  • Provisioned concurrency for AWS Lambda