AWS ElastiCache (IAM)

aws database

A fully managed in-memory caching service that supports Redis and Memcached to improve application performance.

Common permissions

elasticache:DescribeCacheClusterselasticache:DescribeReplicationGroupselasticache:DescribeSnapshotselasticache:DescribeEventselasticache:DescribeCacheParameterGroupselasticache:DescribeCacheSubnetGroupselasticache:ListTagsForResource

Least-privilege example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "elasticache:DescribeCacheClusters",
        "elasticache:DescribeReplicationGroups",
        "elasticache:DescribeSnapshots",
        "elasticache:DescribeEvents",
        "elasticache:DescribeCacheParameterGroups",
        "elasticache:DescribeCacheSubnetGroups",
        "elasticache:ListTagsForResource"
      ],
      "Resource": "*"
    }
  ]
}

Warnings

Avoid elasticache:* — grants full control including creating, modifying, and deleting cache clusters and data.
Avoid elasticache:DeleteCacheCluster — allows deletion of cache clusters, causing data loss and application impact.

Resources

AWS referenceservicereference.us-east-1.amazonaws.com/v1/elasticache/elasticache.json ↗

API

full doc /v1/iam/elasticache