The IAM user must have certain rights in order to allow Hyperglance to poll the relevant information from the API. See below for the full list of permissions Hyperglance needs.

Read/Write Policy:



{
  "Version": "2012-10-17",
  "Statement": [{
    "Effect": "Allow",
    "Action": [
          "ec2:Describe*",
            "ec2:RebootInstances",
            "ec2:StopInstances",
            "ec2:TerminateInstances",
            "ec2:StartInstances",
            "ec2:CreateTags",
            "ec2:DeleteTags",
            "ec2:CreateImage",
            "sts:GetCallerIdentity",
            "dynamodb:Describe*",
            "dynamodb:ListTables",
            "elasticloadbalancing:Describe*",
            "cloudwatch:ListMetrics",
            "cloudwatch:GetMetricStatistics",
            "cloudwatch:Describe*",
            "autoscaling:Describe*",
            "rds:Describe*",
            "rds:ListTagsForResource",
            "rds:AddTagsToResource",
            "rds:RemoveTagsFromResource",
            "rds:DeleteDBInstance",
            "rds:RebootDBInstance"
            ],
    "Resource": "*"
  }]
}


Read Only Policy:


{
  "Version": "2012-10-17",
  "Statement": [{
    "Effect": "Allow",
    "Action": [
          "ec2:Describe*",
            "sts:GetCallerIdentity",
            "dynamodb:Describe*",
            "dynamodb:ListTables",
            "elasticloadbalancing:Describe*",
            "cloudwatch:ListMetrics",
            "cloudwatch:GetMetricStatistics",
            "cloudwatch:Describe*",
            "autoscaling:Describe*",
            "rds:Describe*",
            "rds:ListTagsForResource",
          ],
    "Resource": "*"
  }]
}