Main Content

AWS Identity and Access Management (IAM)

Authorise Cloud Account

In order to manage MATLAB® or clusters in Amazon® Web Services (AWS®), MathWorks® Cloud Center needs access to your AWS resources. You can use an IAM role to establish a trusted relationship between your AWS account and the account belonging to MathWorks Cloud Center. After this relationship is established, you can use the Cloud Center application to access AWS resources in your account. To get started, follow the steps in Link Your Cloud Account to Cloud Center.

Note

AWS GovCloud accounts are not supported in Cloud Center.

Create Custom IAM Access Policy

If you are an advanced user of AWS, and you are not comfortable granting the AdministratorAccess policy, you can create a custom IAM Policy for finer grained access control.

  1. Log in to the AWS management console.

  2. Under Security & Identity, click Identity & Access Management to navigate to the IAM dashboard.

  3. In the IAM console, go to the Policies node and select Create Policy. If this is the first time you have worked with IAM policies, select Get Started, and then Create Policy.

  4. In Review Policy, enter a Policy Name and Description (optional). Copy the text below in the Policy Document box:

    {
      "Version": "2012-10-17",
      "Statement": [
        {
          "Effect": "Allow",
          "Action": [
            "cloudformation:*",
            "sns:*",
            "ec2:*",
            "s3:*",
            "sqs:*",
            "iam:*",
            "autoscaling:*",
            "ssm:*",
            "logs:*",
            "lambda:*",
            "events:*"
          ],
          "Resource": "*"
        }
      ]
    } 

    Click Create Policy.

  5. Switch to the Roles page in the left hand navigation pane and click Create New Role.

  6. Enter a Role Name and click Next Step.

  7. On the Select Role Type page, select Role for Cross-Account Access > Allows IAM users from a 3rd party AWS Account to access this account. Click Select > Next Step.

  8. On the Attach Policy screen, search for the Policy you created in step 7. Select this policy and click Next Step.

  9. On the Review screen, you see a summary of the IAM Role you have just created. Copy your Role ARN. You will need this Role ARN in Cloud Center. Click Create Role to save your work.

  10. On the page listing IAM Roles in your account, you now see the role you created for MathWorks Cloud Center.

  11. Return to Cloud Center and follow the steps in Link Your Cloud Account to Cloud Center, including pasting in your Role ARN (copied in previous step) in the Role ARN box.

Related Topics