# SNS

## Requirements

| Name           | Description                                                                    |
| -------------- | ------------------------------------------------------------------------------ |
| Teleskope Role | Attach SNS read and/or write permissions to the Teleskope IAM role you created |

{% stepper %}
{% step %}

### Grant Teleskope Read Access to SNS

Teleskope needs read access to scan and classify your data stored in SNS.

Attach the AmazonSNSReadOnlyAccess to the Teleskope IAM role you created.

#### Terraform

```
resource "aws_iam_role_policy_attachment" "sns_policy" {
  role       = "TeleskopeRole"
  policy_arn = "arn:aws:iam::aws:policy/AmazonSNSReadOnlyAccess"
}
```

{% endstep %}

{% step %}

### Grant Teleskope Read & Write Access to SNS (optional)

Teleskope needs write access take enforce remediation policies such as tagging, redaction, deletion, etc.

Attach the AmazonSNSFullAccess to the Teleskope IAM role you created.

#### Terraform

```
resource "aws_iam_role_policy_attachment" "sns_policy" {
  role       = "TeleskopeRole"
  policy_arn = "arn:aws:iam::aws:policy/AmazonSNSFullAccess"
}
```

{% endstep %}
{% endstepper %}