Lambda Execution Role

Steps to create a role that will be used for lambda execution are given below

  1. Launch IAM, choose Policies from left panel and click Create policy button.
LER
  1. Click JSON tab and paste the policy provided below. Then click Next: Tags button followed by Next: Review button on next screen.
    Name the policy as QSEmbedPolicy
    Scroll down and click Create policy button.
{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": [
                "quicksight:GenerateEmbedUrlForRegisteredUser",
                "quicksight:SearchDashboards",
                "quicksight:DescribeUser",
                "quicksight:RegisterUser",
                "quicksight:CreateGroup",
                "quicksight:CreateGroupMembership"
            ],
            "Resource": "*",
            "Effect": "Allow"
        },
        {
            "Action": [
                "logs:CreateLogGroup",
                "logs:CreateLogStream",
                "logs:PutLogEvents"
            ],
            "Resource": "*",
            "Effect": "Allow"
        }
    ]
}
LER
  1. Click Roles from left panel and click Create Role button.
    Select AWS service, Lambda and then click Next: Permissions.
LER
  1. Search for QSEmbedPolicy, select it and click Next: Tags followed by Next: Review button on next screen.
    Name the role as QSEmbedRole and click Create role button.
LER