In this section we go through the steps of creating an IAM Role through which you will give Postways limited access to your AWS account.
Step 1 - Create Role
In the Roles section under IAM settings, click the Create New Role button.
Step 2 - Role Name
You can give this new Role any name you like, but if you name it Postways then you know in the future what the purpose of this role is.
Step 3 - Role Type
We need to create a role that provides access to 3rd party AWS accounts (in our scenario, Postways is the 3rd party). Select the Role for Cross-Account Access radio button and click the Select button on the Provide access between your AWS account and a 3rd party AWS account option.
Step 4 - 3rd Party Account Details
In this step we need to provide the 3rd party AWS account details. We need to use the Postways AWS account Id 967498632471 as the Account ID and from the Provider screen in the Postways Portal you need to copy the unique External ID value into the External ID field.
Make sure NOT to tick the MFA option since this will enable Multi Factor Authentication which is not what we want.
Step 5 - Attach Policy
For Postways to be able to send email, SMS text messages and/or mobile push notifications, it requires access to AWS SNS and SES. Select the AmazonSESFullAccess and the AmazonSNSFullAccess pre-defined policies.
Step 6 - Review
This screen will show you the details regarding the new Role you are about to create. Click the Create Role button.
Step 7 - New Role Created
In the IAM Roles overview we can now see the newly created role being listed. Click the new role to view the Role details.
Step 8 - Obtain The ARN
The ARN is now visible and you can copy and paste this ARN value into the Provider ARN field in the Postways Portal.