EventBridge
EventBridge scheduler role
An example IAM role for EventBridge schedules is below. The main points to note are:
- The role needs permission to use any resource it has set as a target, such as Lambda function execution.
- If you specify an SQS dead letter queue, the role needs permission to send messages to that queue.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"lambda:InvokeFunction"
],
"Resource": [
"arn:aws:lambda:<AWS region>:<AWS account number>:function:Deserted-Chateau-Test*"
]
},
{
"Effect": "Allow",
"Action": [
"sqs:SendMessage"
],
"Resource": [
"arn:aws:sqs:<AWS region>:<AWS account number>:<SQS queue name>"
]
}
]
}