Skip to content
This repository was archived by the owner on Aug 9, 2023. It is now read-only.

Commit 1999bcb

Browse files
LisaMcLisaMc
authored
Update create-iam-roles.md
1 parent 1e77993 commit 1999bcb

File tree

1 file changed

+10
-12
lines changed

1 file changed

+10
-12
lines changed

docs/core-env/create-iam-roles.md

Lines changed: 10 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -1,19 +1,19 @@
1-
# Creating IAM Roles
1+
# Permissions
22

3-
Below are IAM roles that your job execution environment in AWS Batch will use:
3+
## Create IAM Roles
44

5-
* Batch Service Role:
5+
IAM roles that your job execution environment in AWS Batch will use include:
6+
7+
* **Batch Service Role (required)**:
68

7-
(required)
89
Role used by AWS Batch to call other AWS services on its behalf.
910
AWS Batch makes calls to other AWS services on your behalf to manage the resources that you use with the service. Before you can use the service, you must have an IAM policy and role that provides the necessary permissions to AWS Batch.
1011
[(Learn More)](https://docs.aws.amazon.com/batch/latest/userguide/service_IAM_role.html)
1112

12-
* Batch Instance Profile:
13+
* **Batch Instance Profile (required)**:
1314

14-
(required)
1515
Role that defines service permissions for EC2 instances launched by AWS Batch.
16-
For example, this is used to specify policies that allow access to specific S3 buckets and modify storage on the intance (shown below).
16+
For example, this is used to specify policies that allow access to specific S3 buckets and modify storage on the instance (shown below).
1717
[(Learn More)](https://docs.aws.amazon.com/batch/latest/userguide/instance_IAM_role.html)
1818

1919
```yaml
@@ -46,16 +46,14 @@ Below are IAM roles that your job execution environment in AWS Batch will use:
4646
Resource: "*"
4747
```
4848
49-
* Batch SpotFleet Role:
49+
* **Batch SpotFleet Role (depends)**:
5050
51-
(depends)
52-
This is role is needed if you intend to launch spot instances from AWS Batch.
51+
This role is needed if you intend to launch spot instances from AWS Batch.
5352
If you create a managed compute environment that uses Amazon EC2 Spot Fleet Instances, you must create a role that grants the Spot Fleet permission to bid on, launch, tag, and terminate instances on your behalf.
5453
[(Learn More)](https://docs.aws.amazon.com/batch/latest/userguide/spot_fleet_IAM_role.html)
5554
56-
* Batch Job Role:
55+
* **Batch Job Role (optional)**:
5756
58-
(optional)
5957
Role used to provide service permissions to individual jobs.
6058
Jobs can run without an IAM role. In that case, they inherit the
6159
permissions of the instance they run on.

0 commit comments

Comments
 (0)