Policy Type | Description |
---|---|
1. Identity-based | Attached to an IAM identity (user, group, or role). Specifies what that identity can do. |
2. Resource-based | Attached to a resource. Specifies who has access to the resource and what actions they can perform on it. |
3. Permissions Boundary | Uses a managed policy to set the maximum permissions that an identity-based policy can grant to an IAM entity. |
4. Organizations SCPs | Defines the maximum permissions for account members of an organization or organizational unit (OU). |
5. ACLs | Controls which principals in sother accounts can access the resource to which the ACL is attached. |
6. Session Policies | Passes advanced session information for use by AWS services. |
Created
August 16, 2023 14:03
-
-
Save pkutaj/e4d191664103fb2c86d19cc21faa4c59 to your computer and use it in GitHub Desktop.
2023-05-29-Explaining-Permission-Boundaries-in-AWS.md
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment