You can use the Amazon Web Services (AWS) command-line interface (CLI) and the Cloud Development Kit (CDK) CLI to create and configure a user with access permissions for DynamoDB with IAM.
Amazon DynamoDB is a key-value and document database that delivers single-digit millisecond performance at any scale.
Instructor: [0:00] First, sign in to the AWS console using your Root user. Then, you can either search or navigate to IAM to manage your user accounts and resources. Next, click on Users, and click Add user. You can name this user whatever you want, but let's call this one DynamoDB.
[0:30] Then, we're going to select Programmatic access, which will give us an access key and a secret. Let's click on Next permissions, and we can either create a user group if we want to reuse this across users, or we can attach existing policies directly to this user. Let's do that.
[0:50] Search for Dynamo. We'll want DynamoDB full access giving this user the correct permissions to invoke commands. Then, we also need CloudFormation full access to allow the AWS CDK to scaffold our infrastructure.
[1:10] With these two policies selected, we can hit next. Feel free to add tags if you would like. These are optional that will allow you to organize your users. Then finally, review the new user that we want to add and the two policies that we've selected.
[1:27] Finally, create our user, and save the access key ID, as well as clicking Show and saving your secret access key, so that we can configure the CLI to communicate with AWS.