AWS IAM Policies

  • Policies can give users permissions or take them away
  • AWS has a bunch of default policies but you can make your own
  • Policies are written in JSON or created through the UI
  • Policies can be attached to 0+ users
  • Policies manage the authorization components from before
  • What is the user trying to do? To what resource? Other context? Allow or deny?

7 / 23