Skip to main content

Creating a Read-Only CloudFront Role in AWS

You can add your CloudFront CDN in Read-Only mode to IO River and use it for importing your configuration, monitoring, and traffic steering. To add CloudFront as one of your CDN providers, you need an AWS role that can be used with IO River.

As part of creating a role, you need to generate a UUID to be used as an External ID. You can easily create this role using one of the following methods:

  • Using CloudFormation - Use this quick-create link to create the read-only role.
  • Using Terraform - Use this code to create the read-only role.

Once you have created the role, you should obtain:

  1. RoleArn - Id of the role created
  2. External-Id - The UUID you generated and used to create the role with.

Save the created RoleArn and External-Id, and provide them to the IO River support team to add your CloudFront CDN in Read-Only mode.