Amazon SQS Connection Properties

IAM authentication provides secured access to Amazon SQS resources. You can use the AWS IAM system to map policies to IAM roles or external resources and to determine the list of permissions that can be assigned to the IAM roles.

Note: The IAM role that you configure in the Amazon SQS connection properties will have access to all the queues that you include in the Amazon SQS event source and event target properties. You must create a separate app connection to configure an IAM role to access a different set of Amazon SQS queues.

When you select Amazon SQS as the connection type, you can configure Amazon SQS specific connection properties. The following table defines the Amazon SQS connection properties that you must configure in the Connection Properties section:

Property	Description
Access Key	AWS access key ID of the requester. Alternatively, you can pass the following access key in the AWS SDK in the Java system properties: aws.accessKeyId You can pass the key using the AWS_ACCESS_KEY_ID environment variable.
Secret Key	AWS secret key of the requester. Alternatively, you can pass the following secret key in the AWS SDK in the Java system properties: aws.secretKey You can pass the secret key using the AWS_SECRET_ACCESS_KEY environment variable.
Use EC2 Role to Assume Role	Enables the EC2 role to assume another IAM role specified in the IAM Role ARN option.
IAM Role ARN	The Amazon Resource Name (ARN) of the AWS Identity and Access Management (IAM) role assumed by the user to use the dynamically generated temporary security credentials.
External Id	Provides a more secure access to the Amazon SQS bucket when the Amazon SQS bucket is in a different AWS account. You can use external ID to grant access to your AWS resources to a third party.
SQS Endpoint	Required. The region that applies to all event sources and event targets of the connection. For example: sqs.eu-west-1.amazonaws.com