@cloud-copilot/iam-data/data/actions/dms.json

AWS IAM Data

{
  "addtagstoresource": {
    "name": "AddTagsToResource",
    "description": "Grants permission to add metadata tags to DMS resources, including replication instances, endpoints, security groups, and migration tasks",
    "accessLevel": "Tagging",
    "resourceTypes": [
      {
        "name": "Certificate",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "DataMigration",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "DataProvider",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "Endpoint",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "EventSubscription",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "InstanceProfile",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationConfig",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationInstance",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationSubnetGroup",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTask",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTaskAssessmentRun",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTaskIndividualAssessment",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": []
  },
  "applypendingmaintenanceaction": {
    "name": "ApplyPendingMaintenanceAction",
    "description": "Grants permission to apply a pending maintenance action to a resource (for example, to a replication instance)",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationInstance",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "associateextensionpack": {
    "name": "AssociateExtensionPack",
    "description": "Grants permission to associate a extension pack",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "batchstartrecommendations": {
    "name": "BatchStartRecommendations",
    "description": "Grants permission to start the analysis of up to 20 source databases to recommend target engines for each source database",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "cancelmetadatamodelconversion": {
    "name": "CancelMetadataModelConversion",
    "description": "Grants permission to cancel a single metadata model conversion operation that was started with StartMetadataModelConversion",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "cancelmetadatamodelcreation": {
    "name": "CancelMetadataModelCreation",
    "description": "Grants permission to cancel a single metadata model creation operation that was started with StartMetadataModelCreation",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "cancelreplicationtaskassessmentrun": {
    "name": "CancelReplicationTaskAssessmentRun",
    "description": "Grants permission to cancel a single premigration assessment run",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationTaskAssessmentRun",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "createdatamigration": {
    "name": "CreateDataMigration",
    "description": "Grants permission to create a database migration using the provided settings",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": [
          "iam:PassRole"
        ]
      }
    ],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": []
  },
  "createdataprovider": {
    "name": "CreateDataProvider",
    "description": "Grants permission to create an data provider using the provided settings",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": [
      "iam:PassRole"
    ]
  },
  "createendpoint": {
    "name": "CreateEndpoint",
    "description": "Grants permission to create an endpoint using the provided settings",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": [
      "iam:PassRole"
    ]
  },
  "createeventsubscription": {
    "name": "CreateEventSubscription",
    "description": "Grants permission to create an AWS DMS event notification subscription",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": []
  },
  "createfleetadvisorcollector": {
    "name": "CreateFleetAdvisorCollector",
    "description": "Grants permission to create a Fleet Advisor collector using the specified parameters",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": [
      "iam:PassRole"
    ]
  },
  "createinstanceprofile": {
    "name": "CreateInstanceProfile",
    "description": "Grants permission to create an instance profile using the provided settings",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": [
      "iam:PassRole"
    ]
  },
  "createmigrationproject": {
    "name": "CreateMigrationProject",
    "description": "Grants permission to create an migration project using the provided settings",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "DataProvider",
        "required": true,
        "conditionKeys": [],
        "dependentActions": [
          "iam:PassRole"
        ]
      },
      {
        "name": "InstanceProfile",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": []
  },
  "createoutboundintegration": {
    "name": "CreateOutboundIntegration",
    "isPermissionOnly": true,
    "description": "Grants permission to DMS to create resources for zero-ETL integrations with self managed databases",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": [
      "iam:PassRole"
    ]
  },
  "createreplicationconfig": {
    "name": "CreateReplicationConfig",
    "description": "Grants permission to create a replication config using the provided settings",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "Endpoint",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": []
  },
  "createreplicationinstance": {
    "name": "CreateReplicationInstance",
    "description": "Grants permission to create a replication instance using the specified parameters",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": [
      "iam:PassRole"
    ]
  },
  "createreplicationsubnetgroup": {
    "name": "CreateReplicationSubnetGroup",
    "description": "Grants permission to create a replication subnet group given a list of the subnet IDs in a VPC",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": []
  },
  "createreplicationtask": {
    "name": "CreateReplicationTask",
    "description": "Grants permission to create a replication task using the specified parameters",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "Endpoint",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationInstance",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys",
      "dms:req-tag/${TagKey}"
    ],
    "dependentActions": []
  },
  "deletecertificate": {
    "name": "DeleteCertificate",
    "description": "Grants permission to delete the specified certificate",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "Certificate",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deleteconnection": {
    "name": "DeleteConnection",
    "description": "Grants permission to delete the specified connection between a replication instance and an endpoint",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "Endpoint",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationInstance",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletedatamigration": {
    "name": "DeleteDataMigration",
    "description": "Grants permission to delete the specified database migration",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "DataMigration",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletedataprovider": {
    "name": "DeleteDataProvider",
    "description": "Grants permission to delete the specified data provider",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "DataProvider",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deleteendpoint": {
    "name": "DeleteEndpoint",
    "description": "Grants permission to delete the specified endpoint",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "Endpoint",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deleteeventsubscription": {
    "name": "DeleteEventSubscription",
    "description": "Grants permission to delete an AWS DMS event subscription",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "EventSubscription",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletefleetadvisorcollector": {
    "name": "DeleteFleetAdvisorCollector",
    "description": "Grants permission to delete the specified Fleet Advisor collector",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletefleetadvisordatabases": {
    "name": "DeleteFleetAdvisorDatabases",
    "description": "Grants permission to delete the specified Fleet Advisor databases",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deleteinstanceprofile": {
    "name": "DeleteInstanceProfile",
    "description": "Grants permission to delete the specified instance profile",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "InstanceProfile",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletemigrationproject": {
    "name": "DeleteMigrationProject",
    "description": "Grants permission to delete the specified migration project",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletereplicationconfig": {
    "name": "DeleteReplicationConfig",
    "description": "Grants permission to delete the specified replication config",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationConfig",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletereplicationinstance": {
    "name": "DeleteReplicationInstance",
    "description": "Grants permission to delete the specified replication instance",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationInstance",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletereplicationsubnetgroup": {
    "name": "DeleteReplicationSubnetGroup",
    "description": "Grants permission to deletes a subnet group",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationSubnetGroup",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletereplicationtask": {
    "name": "DeleteReplicationTask",
    "description": "Grants permission to delete the specified replication task",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationTask",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deletereplicationtaskassessmentrun": {
    "name": "DeleteReplicationTaskAssessmentRun",
    "description": "Grants permission to delete the record of a single premigration assessment run",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationTaskAssessmentRun",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeaccountattributes": {
    "name": "DescribeAccountAttributes",
    "description": "Grants permission to list all of the AWS DMS attributes for a customer account",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeapplicableindividualassessments": {
    "name": "DescribeApplicableIndividualAssessments",
    "description": "Grants permission to list individual assessments that you can specify for a new premigration assessment run",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "ReplicationInstance",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTask",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describecertificates": {
    "name": "DescribeCertificates",
    "description": "Grants permission to provide a description of the certificate",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeconnections": {
    "name": "DescribeConnections",
    "description": "Grants permission to describe the status of the connections that have been made between the replication instance and an endpoint",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeconversionconfiguration": {
    "name": "DescribeConversionConfiguration",
    "description": "Grants permission to return information about DMS Schema Conversion project configuration",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describedatamigrations": {
    "name": "DescribeDataMigrations",
    "description": "Grants permission to return information about database migrations for your account in the specified region",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeendpointsettings": {
    "name": "DescribeEndpointSettings",
    "description": "Grants permission to return the possible endpoint settings available when you create an endpoint for a specific database engine",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeendpointtypes": {
    "name": "DescribeEndpointTypes",
    "description": "Grants permission to return information about the type of endpoints available",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeendpoints": {
    "name": "DescribeEndpoints",
    "description": "Grants permission to return information about the endpoints for your account in the current region",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeengineversions": {
    "name": "DescribeEngineVersions",
    "description": "Grants permission to return information about the available versions for DMS replication instances",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeeventcategories": {
    "name": "DescribeEventCategories",
    "description": "Grants permission to list categories for all event source types, or, if specified, for a specified source type",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeeventsubscriptions": {
    "name": "DescribeEventSubscriptions",
    "description": "Grants permission to list all the event subscriptions for a customer account",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeevents": {
    "name": "DescribeEvents",
    "description": "Grants permission to list events for a given source identifier and source type",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describefleetadvisorcollectors": {
    "name": "DescribeFleetAdvisorCollectors",
    "description": "Grants permission to return a paginated list of Fleet Advisor collectors in your account based on filter settings",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describefleetadvisordatabases": {
    "name": "DescribeFleetAdvisorDatabases",
    "description": "Grants permission to return a paginated list of Fleet Advisor databases in your account based on filter settings",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describefleetadvisorlsaanalysis": {
    "name": "DescribeFleetAdvisorLsaAnalysis",
    "description": "Grants permission to return a paginated list of descriptions of large-scale assessment (LSA) analyses produced by your Fleet Advisor collectors",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describefleetadvisorschemaobjectsummary": {
    "name": "DescribeFleetAdvisorSchemaObjectSummary",
    "description": "Grants permission to return a paginated list of descriptions of schemas discovered by your Fleet Advisor collectors based on filter settings",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describefleetadvisorschemas": {
    "name": "DescribeFleetAdvisorSchemas",
    "description": "Grants permission to return a paginated list of schemas discovered by your Fleet Advisor collectors based on filter settings",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describemetadatamodel": {
    "name": "DescribeMetadataModel",
    "description": "Grants permission to get detailed information about the specified metadata model, including its definition and corresponding converted objects in the target database if applicable",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describemetadatamodelchildren": {
    "name": "DescribeMetadataModelChildren",
    "description": "Grants permission to get a list of child metadata models for the specified metadata model in the database hierarchy",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describemetadatamodelcreations": {
    "name": "DescribeMetadataModelCreations",
    "description": "Grants permission to return a paginated list of metadata model creation requests for a migration project",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describemetadatamodelimports": {
    "name": "DescribeMetadataModelImports",
    "description": "Grants permission to return information about start metadata model import operations for a migration project",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeorderablereplicationinstances": {
    "name": "DescribeOrderableReplicationInstances",
    "description": "Grants permission to return information about the replication instance types that can be created in the specified region",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describependingmaintenanceactions": {
    "name": "DescribePendingMaintenanceActions",
    "description": "Grants permission to return information about pending maintenance actions",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describerecommendationlimitations": {
    "name": "DescribeRecommendationLimitations",
    "description": "Grants permission to return a paginated list of descriptions of limitations for recommendations of target AWS engines",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describerecommendations": {
    "name": "DescribeRecommendations",
    "description": "Grants permission to return a paginated list of descriptions of target engine recommendations for your source databases",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describerefreshschemasstatus": {
    "name": "DescribeRefreshSchemasStatus",
    "description": "Grants permission to returns the status of the RefreshSchemas operation",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "Endpoint",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describereplicationconfigs": {
    "name": "DescribeReplicationConfigs",
    "description": "Grants permission to describe replication configs",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describereplicationinstancetasklogs": {
    "name": "DescribeReplicationInstanceTaskLogs",
    "description": "Grants permission to return information about the task logs for the specified task",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "ReplicationInstance",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:TagKeys"
    ],
    "dependentActions": []
  },
  "describereplicationinstances": {
    "name": "DescribeReplicationInstances",
    "description": "Grants permission to return information about replication instances for your account in the current region",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describereplicationsubnetgroups": {
    "name": "DescribeReplicationSubnetGroups",
    "description": "Grants permission to return information about the replication subnet groups",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describereplicationtablestatistics": {
    "name": "DescribeReplicationTableStatistics",
    "description": "Grants permission to describe replication table statistics",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "ReplicationConfig",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describereplicationtaskassessmentresults": {
    "name": "DescribeReplicationTaskAssessmentResults",
    "description": "Grants permission to return the latest task assessment results from Amazon S3",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "ReplicationTask",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describereplicationtaskassessmentruns": {
    "name": "DescribeReplicationTaskAssessmentRuns",
    "description": "Grants permission to return a paginated list of premigration assessment runs based on filter settings",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "ReplicationInstance",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTask",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTaskAssessmentRun",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describereplicationtaskindividualassessments": {
    "name": "DescribeReplicationTaskIndividualAssessments",
    "description": "Grants permission to return a paginated list of individual assessments based on filter settings",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "ReplicationTask",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTaskAssessmentRun",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describereplicationtasks": {
    "name": "DescribeReplicationTasks",
    "description": "Grants permission to return information about replication tasks for your account in the current region",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describereplications": {
    "name": "DescribeReplications",
    "description": "Grants permission to describe replications",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeschemas": {
    "name": "DescribeSchemas",
    "description": "Grants permission to return information about the schema for the specified endpoint",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "Endpoint",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describetablestatistics": {
    "name": "DescribeTableStatistics",
    "description": "Grants permission to return table statistics on the database migration task, including table name, rows inserted, rows updated, and rows deleted",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "ReplicationTask",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "exportmetadatamodelassessment": {
    "name": "ExportMetadataModelAssessment",
    "description": "Grants permission to export the specified metadata model assessment",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "gettargetselectionrules": {
    "name": "GetTargetSelectionRules",
    "description": "Grants permission to convert source selection rules into their target counterparts for schema conversion operations",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "importcertificate": {
    "name": "ImportCertificate",
    "description": "Grants permission to upload the specified certificate",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys"
    ],
    "dependentActions": []
  },
  "listdataproviders": {
    "name": "ListDataProviders",
    "description": "Grants permission to list the AWS DMS attributes for a data providers",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "listextensionpacks": {
    "name": "ListExtensionPacks",
    "description": "Grants permission to list the AWS DMS attributes for a extension packs",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "listinstanceprofiles": {
    "name": "ListInstanceProfiles",
    "description": "Grants permission to list the AWS DMS attributes for a instance profiles",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "InstanceProfile",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "listmetadatamodelassessmentactionitems": {
    "name": "ListMetadataModelAssessmentActionItems",
    "isPermissionOnly": true,
    "description": "Grants permission to list the AWS DMS attributes for a metadata model assessment action items. Note. Despite this action requires StartMetadataModelImport, the latter does not currently authorize the described Schema Conversion operation",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": [
      "dms:StartMetadataModelImport"
    ]
  },
  "listmetadatamodelassessments": {
    "name": "ListMetadataModelAssessments",
    "description": "Grants permission to list the AWS DMS attributes for a metadata model assessments",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "listmetadatamodelconversions": {
    "name": "ListMetadataModelConversions",
    "description": "Grants permission to list the AWS DMS attributes for a metadata model conversions",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "listmetadatamodelexports": {
    "name": "ListMetadataModelExports",
    "description": "Grants permission to list the AWS DMS attributes for a metadata model exports",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "listmigrationprojects": {
    "name": "ListMigrationProjects",
    "description": "Grants permission to list the AWS DMS attributes for a migration projects. Note. Despite this action requires DescribeMigrationProjects and DescribeConversionConfiguration, both required actions do not currently authorize the described Schema Conversion operation",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "DataProvider",
        "required": false,
        "conditionKeys": [],
        "dependentActions": [
          "dms:DescribeConversionConfiguration"
        ]
      },
      {
        "name": "InstanceProfile",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "listtagsforresource": {
    "name": "ListTagsForResource",
    "description": "Grants permission to list all tags for an AWS DMS resource",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "Certificate",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "DataMigration",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "DataProvider",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "Endpoint",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "EventSubscription",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "InstanceProfile",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationConfig",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationInstance",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationSubnetGroup",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTask",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTaskAssessmentRun",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTaskIndividualAssessment",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "modifydatamigration": {
    "name": "ModifyDataMigration",
    "description": "Grants permission to modify the specified database migration",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "DataMigration",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": [
      "iam:PassRole"
    ]
  },
  "modifyendpoint": {
    "name": "ModifyEndpoint",
    "description": "Grants permission to modify the specified endpoint",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "Endpoint",
        "required": true,
        "conditionKeys": [],
        "dependentActions": [
          "iam:PassRole"
        ]
      },
      {
        "name": "Certificate",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "modifyeventsubscription": {
    "name": "ModifyEventSubscription",
    "description": "Grants permission to modify an existing AWS DMS event notification subscription",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "modifyfleetadvisorcollector": {
    "name": "ModifyFleetAdvisorCollector",
    "isPermissionOnly": true,
    "description": "Grants permission to modify the name and description of the specified Fleet Advisor collector",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "modifyfleetadvisorcollectorstatuses": {
    "name": "ModifyFleetAdvisorCollectorStatuses",
    "isPermissionOnly": true,
    "description": "Grants permission to modify the status of the specified Fleet Advisor collector",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "modifyoutboundintegration": {
    "name": "ModifyOutboundIntegration",
    "isPermissionOnly": true,
    "description": "Grants permission to DMS to modify resources for zero-ETL integrations with self managed databases",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": [
      "iam:PassRole"
    ]
  },
  "modifyreplicationconfig": {
    "name": "ModifyReplicationConfig",
    "description": "Grants permission to modify the specified replication config",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationConfig",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "modifyreplicationinstance": {
    "name": "ModifyReplicationInstance",
    "description": "Grants permission to modify the replication instance to apply new settings",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationInstance",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "modifyreplicationsubnetgroup": {
    "name": "ModifyReplicationSubnetGroup",
    "description": "Grants permission to modify the settings for the specified replication subnet group",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "modifyreplicationtask": {
    "name": "ModifyReplicationTask",
    "description": "Grants permission to modify the specified replication task",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationTask",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "movereplicationtask": {
    "name": "MoveReplicationTask",
    "description": "Grants permission to move the specified replication task to a different replication instance",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationInstance",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTask",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "rebootreplicationinstance": {
    "name": "RebootReplicationInstance",
    "description": "Grants permission to reboot a replication instance. Rebooting results in a momentary outage, until the replication instance becomes available again",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationInstance",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "refreshschemas": {
    "name": "RefreshSchemas",
    "description": "Grants permission to populate the schema for the specified endpoint",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "Endpoint",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationInstance",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "reloadreplicationtables": {
    "name": "ReloadReplicationTables",
    "description": "Grants permission to reload the target database table with the source for a replication",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationConfig",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "reloadtables": {
    "name": "ReloadTables",
    "description": "Grants permission to reload the target database table with the source data",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "ReplicationTask",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "removetagsfromresource": {
    "name": "RemoveTagsFromResource",
    "description": "Grants permission to remove metadata tags from a DMS resource",
    "accessLevel": "Tagging",
    "resourceTypes": [
      {
        "name": "Certificate",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "DataMigration",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "DataProvider",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "Endpoint",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "EventSubscription",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "InstanceProfile",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "MigrationProject",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationConfig",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationInstance",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationSubnetGroup",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTask",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTaskAssessmentRun",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      },
      {
        "name": "ReplicationTaskIndividualAssessment",
        "required": false,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "aws:ResourceTag/${TagKey}",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys"
    ],
    "dependentActions": []
  },
  "runfleetadvisorlsaanalysis": {
    "name": "RunFleetAdvisorLsaAnalysis",
    "description": "Grants permission to run a large-scale assessment (LSA) analysis on every Fleet Advisor collector in your account",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "startdatamigration": {
    "name": "StartDataMigration",
    "description": "Grants permission to start the database migration",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "DataMigration",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "startmetadatamodelassessment": {
    "name": "StartMetadataModelAssessment",
    "description": "Grants permission to start a new assessment of metadata model",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "startmetadatamodelconversion": {
    "name": "StartMetadataModelConversion",
    "description": "Grants permission to start a new conversion of metadata model",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "startmetadatamodelcreation": {
    "name": "StartMetadataModelCreation",
    "description": "Grants permission to create source metadata model of the given type with the specified properties for schema conversion operations",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "startmetadatamodelexportasscripts": {
    "name": "StartMetadataModelExportAsScripts",
    "description": "Grants permission to start a new export of metadata model as script",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "startmetadatamodelexporttotarget": {
    "name": "StartMetadataModelExportToTarget",
    "description": "Grants permission to start a new export of metadata model to target",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "MigrationProject",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],