Minimum permissions to deploy a Lambda function


Which minimum permission does IAM user need to deploy a Lambda function using the AWS CLI? When selecting "attach policy directly" I get a long list of permissions but what permission do I need?

1 Answer


If you create the following policy and attach it to the IAM user, the operations described in the following document will be possible.
IAM-related operations allow creating IAM roles, attaching policies, and attaching IAM roles.
Operations related to Lambda allow Lambda creation, configuration update, list display, details display, and deletion.

    "Version": "2012-10-17",
    "Statement": [
            "Sid": "Statement1",
            "Effect": "Allow",
            "Action": [
            "Resource": [
  • Can I restrict the resource part further to only allow access to specific AWS resources, because I think a minimal ressource permission for a lambda function are S3 buckets?

