There are two policies that allow viewing of the billing and usage information, both available as templates:
Billing - "AWS Account Activity Access":
{
"Statement": [
{
"Effect": "Allow",
"Action": [
"aws-portal:ViewBilling"
],
"Resource": "*"
}
]
}
Usage - "AWS Account Usage Report Access":
{
"Statement": [
{
"Effect": "Allow",
"Action": [
"aws-portal:ViewUsage"
],
"Resource": "*"
}
]
}
These have to be turned on by the root user in order to take effect. To do this, log in with the root credentials, and go to "My Account" from the menu that appears when you click your name. Scroll past all the services you're signed up for, services you haven't signed up for, and the first paragraph under that should be "IAM user access to the AWS Website". There's a button to activate it, and two checkboxes - one for account activity, one for usage reports. Select those, and activate IAM and the policies should take effect.