AWS EMR Serverless (IAM)

aws analytics

AWS EMR Serverless is a serverless option in Amazon EMR that makes it easy to run open-source big data frameworks like Apache Spark and Hive without configuring, managing, or scaling clusters.

Common permissions

emr-serverless:GetApplicationemr-serverless:ListApplicationsemr-serverless:StartApplicationemr-serverless:StopApplicationemr-serverless:GetJobRunemr-serverless:ListJobRunsemr-serverless:StartJobRunemr-serverless:TagResource

Least-privilege example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "emr-serverless:GetApplication",
        "emr-serverless:ListApplications",
        "emr-serverless:StartApplication",
        "emr-serverless:StopApplication",
        "emr-serverless:GetJobRun",
        "emr-serverless:ListJobRuns",
        "emr-serverless:StartJobRun",
        "emr-serverless:TagResource"
      ],
      "Resource": "*"
    }
  ]
}

Warnings

Avoid emr-serverless:* — grants full control including delete/modify of applications and sessions
Avoid emr-serverless:DeleteApplication — can permanently delete applications and all associated data

Resources

AWS referenceservicereference.us-east-1.amazonaws.com/v1/emr-serverless/emr-serverless.json ↗

API

full doc /v1/iam/emr-serverless