Create an IAM Role who will be given access to the secure S3 Bucket

Create an IAM Role called 'paas-ec2' with the managed policies AmazonEC2RoleforSSM and AmazonS3ReadOnlyAccess. The template refers specifically to the name 'paas-ec2'.