pkutaj/2023-05-29-Explaining-Permission-Boundaries-in-AWS.md

## 2023-05-29-Explaining-Permission-Boundaries-in-AWS.md

      
    Raw
  

              2023-05-29-Explaining-Permission-Boundaries-in-AWS.md
            
          
Policy Type
Description


1. Identity-based
Attached to an IAM identity (user, group, or role). Specifies what that identity can do.


2. Resource-based
Attached to a resource. Specifies who has access to the resource and what actions they can perform on it.


3. Permissions Boundary
Uses a managed policy to set the maximum permissions that an identity-based policy can grant to an IAM entity.


4. Organizations SCPs
Defines the maximum permissions for account members of an organization or organizational unit (OU).


5. ACLs
Controls which principals in sother accounts can access the resource to which the ACL is attached.


6. Session Policies
Passes advanced session information for use by AWS services.
Policy Type	Description
1. Identity-based	Attached to an IAM identity (user, group, or role). Specifies what that identity can do.
2. Resource-based	Attached to a resource. Specifies who has access to the resource and what actions they can perform on it.
3. Permissions Boundary	Uses a managed policy to set the maximum permissions that an identity-based policy can grant to an IAM entity.
4. Organizations SCPs	Defines the maximum permissions for account members of an organization or organizational unit (OU).
5. ACLs	Controls which principals in sother accounts can access the resource to which the ACL is attached.
6. Session Policies	Passes advanced session information for use by AWS services.