Learn how to set up AWS Bedrock with Cline using credentials authentication. This guide covers AWS environment setup, regional access verification, and secure integration with the Cline VS Code extension.
AmazonBedrockLimitedAccess
managed policy provides comprehensive access, for a more restricted and secure setup adhering to the principle of least privilege, the following minimal permissions are sufficient for Cline’s core model invocation functionality:
bedrock:InvokeModel
bedrock:InvokeModelWithResponseStream
ClineBedrockInvokeAccess
) and attach it to your IAM user or role.AmazonBedrockLimitedAccess
. This grants broader permissions, including the ability to list models, manage provisioning, and other Bedrock features. This might be simpler for initial setup or if you require these wider capabilities.
View AmazonBedrockLimitedAccess Policy Detailsbedrock:InvokeModel
, bedrock:InvokeModelWithResponseStream
) are sufficient for Cline to use a model if you specify the model ID directly in Cline’s settings. If you rely on Cline to dynamically list available Bedrock models, you might need additional permissions like bedrock:ListFoundationModels
.aws-marketplace:Subscribe
permissions if not already handled.Ctrl+Shift+X
or Cmd+Shift+X
).us-east-1
or your enterprise-approved region).AmazonBedrockLimitedAccess
policy, and ensure necessary permissions.