Amazon CloudSearch adds enhanced IAM integration

Posted on: Aug 14, 2014

Amazon CloudSearch now supports IAM integration for all search domain services. Developers could already use IAM to control access to the CloudSearch configuration service. With this release, developers can also use IAM to control access to each domain’s document, search, and suggest services and use AWS Signature Version 4 to sign all CloudSearch requests. Requests are signed automatically when developers use the latest AWS SDKs and command line tools.

AWS Signature Version 4 is the latest method for authenticating API requests to AWS Services.  For more information about Signature Version 4, please see the Signature Version 4 signing process in the AWS General Reference.

Amazon CloudSearch supports both user-based and resource-based IAM policies to control access to the document, search, and suggest services. Developers can manage access to Amazon CloudSearch entirely through IAM by configuring user-based policies, or manage access to particular search domains' services with resource-based policies. Amazon CloudSearch will continue to support IP based access policies. To learn more about setting up access policies for your CloudSearch domain, see Configuring Access for an Amazon CloudSearch Domain.

Amazon CloudSearch is a fully-managed service that makes it easy to set up, manage, and scale a search solution for your website or application. For an introduction to Amazon CloudSearch, visit our detail page. To learn more about recently released features, see the Amazon CloudSearch Developer Guide. Please share your thoughts on these and any additional features you'd like to see in the CloudSearch forum. We really appreciate customer feedback and use it to help us prioritize upcoming features.