The validation process connects to your AWS account using the IAM role to verify and list the resource properties, such as the subnet ID, availability zone ID, and role name. The IAM role establishes trust between your AWS account and the Informatica AWS account so that the serverless runtime environment can create an ENI and securely connect to data sources in your cloud environment. The IAM role must have permission to view the resource. For more information about setting up the IAM role, see Configure your environment.

The following role permissions are required for validation:

ec2:DescribeRegions
ec2:DescribeAvailabilityZones
ec2:DescribeVpcs
ec2:DescribeSubnets
ec2:DescribeSecurityGroups

If validation fails for any resource, the serverless runtime environment fails to start. You can download the detailed validation messages using the download option on the

Serverless Environments

page or the specific serverless runtime environment configuration page. Validation results and messages are available for failed environments only.

In addition to the serverless runtime environment properties, the validation process also checks for the number of IP addresses available on the subnet. The serverless runtime environment creation fails if there are insufficient IP addresses available on the subnet.

Serverless runtime environment properties and network settings are validated when you perform the following tasks on a serverless runtime environment:

Create a new serverless runtime environment.
Edit a failed serverless runtime environment and save the updates.
Clone a serverless runtime environment and save the configurations.
Redeploy a failed serverless runtime environment.