How to modify Coherence-generated IAM roles
Coherence generates an IAM role for your ECS tasks, build pipelines, and other SDLC components. How do you customize them if needed?
The best practice here is to attach additional policies to the roles that we create for your application. The Coherence-managed policies will be updated continually by our system, so manual configuration will be treated as drift and overwritten. However, additional policy attachments to the Coherence-managed roles will not be removed. Therefore, rather than inline policies on the role, you should consider using Amazon-managed or self-managed policies which you attach either using the AWS CLI or the cloud console.