Professional Documents
Culture Documents
IAM - Global Sid: Statement ID (Optional) Version: Principal: Account/user/role To Which Policy
IAM - Global Sid: Statement ID (Optional) Version: Principal: Account/user/role To Which Policy
- Users don’t have to belong to a group, users can belong to multiple groups
- Policies (JSON Documents) are assigned to Users/Groups
Sid: Statement ID (Optional) Version: Principal: account/user/role to which policy
policy applies to Effect: Allow,Deny Action:ec2:Describe.* Resouce:* Condition: When
policy is in effect(Optional)
- AWS you apply Least Privilege principle. Don’t give more permissions than a user needs.
- You can create policy using Visual editor or by typing JSON
- Access AWS 3 ways
SDK(access keys)