Lambda Execution Role(IAM)

The execution role grants permission to the lambda function to upload, read, and deploy to other AWS Services / Resources.

The following are some managed policies for lambda:

1. AWSLambdaBasicExecutionRole — Upload logs to CloudWatch.

2.AWSLambdaKinesisExecutionRole — Read from kinesis.

3.AWSLambdaDynamoDBExecutionRole — Read from DynamoDB Streams.

4.AWSLambdaSQSQueueExecutionRole — Read from SQS.

5.AWSLambdaVPCAccessExecutionRole — Deploy Lambda function in VPC.

6.AWSXRayDaemonWriteAccess — Uplod trace data to x-ray.

NOTE:

When we use event source mapping, where lambda poll the messages or data from Kinesis, DynamoDB and SQS. In order to perform this action, lambda function required execution role.