Documentation

Lumigo IAM Role

Suggest Edits

Lumigo uses CloudFormation template to create an IAM role for collecting and pushing the data needed for monitoring your AWS environment.

Lumigo IAM Role permissions

Lumigo CloudFormation template provides the latest functionality, policies, and permissions to monitor your AWS environment.

"sts:AssumeRole",
"lambda:UpdateFunctionConfiguration",
"ecs:RegisterTaskDefinition",
"ecs:UpdateService",
"ce:GetCostAndUsageWithResources",
"ce:GetCostAndUsage",
"events:PutEvents",
"iam:PassRole",
"logs:PutSubscriptionFilter",
"logs:DeleteSubscriptionFilter",
"logs:DescribeSubscriptionFilters",
"cloudwatch:PutMetricAlarm",
"cloudwatch:DeleteAlarms",
"cloudwatch:PutDashboard",
"cloudwatch:DeleteDashboards",
"cloudwatch:PutMetricData",
"cloudwatch:PutMetricStream",
"cloudwatch:DeleteMetricStream",
"cloudwatch:StartMetricStreams",
"cloudwatch:StopMetricStreams",
"events:PutRule",
"events:PutTargets"

Custom IAM Role

If needed, we can create a custom IAM role to fit your exact needs.
Contact our support via Intercom or directly by email.

Updated about 2 years ago