What all permissions should be given to IAM user in order to have Amazon Route 53 validation be done?
Hi,
You can either grant permission for all Route53 features or you can restrict to:
route53:ListHostedZones
route53:GetHostedZone
route53:ListResourceRecordSets
route53:ChangeResourceRecordSets
route53:GetChange
You could try restricting to specific resources but I couldn’t predict how that will behave as that scenario is not tested.
I’ll update the docs at: