Add new secret creation steps

Author: cmilesb

content/embeds/rc-rdi-secrets-encryption-permissions.md

@@ -0,0 +1,5 @@
+* **Encryption key**: Select the [encryption key](#create-encryption-key) you created earlier.
+
+* **Resource permissions**: Add the following permissions to your secret to allow the Redis data pipeline to access your secret. Replace `<AWS ACCOUNT ID>` with the AWS account ID for the Redis Cloud cluster that you saved earlier.
+
+{{< embed-md "rc-rdi-secrets-permissions.md" >}}

content/embeds/rc-rdi-secrets-permissions.md

@@ -0,0 +1,17 @@
+```json
+{
+    "Version" : "2012-10-17",
+    "Statement" : [ {
+        "Sid" : "RedisDataIntegrationRoleAccess",
+        "Effect" : "Allow",
+        "Principal" : "*",
+        "Action" : [ "secretsmanager:GetSecretValue", "secretsmanager:DescribeSecret" ],
+        "Resource" : "*",
+        "Condition" : {
+            "StringLike" : {
+                "aws:PrincipalArn" : "arn:aws:iam::<AWS ACCOUNT ID>:role/redis-data-pipeline-secrets-role"
+            }
+        }
+    } ]
+}
+```