AWS Identity and Access Management
User Guide

Working with Policies

This section describes how to create and manage all types of IAM policies (managed policies and inline policies).

For more information about the different types of IAM policies, see Managed Policies and Inline Policies.

For general information about IAM policies, see Overview of IAM Policies.

To add permissions to an IAM principal entity—that is, an IAM user, group, or role—you create a policy and then attach the policy to the principal entity. You can attach multiple policies to a principal entity, and each policy can contain multiple permissions.

For information about how permissions are evaluated when multiple policies are in effect for a given IAM principal entity, see IAM Policy Evaluation Logic.

For information about policy size limitations and other quotas, see Limitations on IAM Entities and Objects.