Menu
AWS Certificate Manager
User Guide (Version 1.0)

AWS–Managed Policies

AWS managed policies are standalone identity–based policies that you can attach to multiple users, groups, and roles in your AWS account. AWS managed policies are created and managed by AWS. The following AWS managed policies are available for ACM. For more information about attaching managed policies to a user, group, or role, see Working with Managed Policies in the IAM User Guide.

To use an AWS managed policy, a user with administrative privileges must attach the policy to a user, role, or group. For more information about attaching AWS managed policies, see Attaching Managed Policies in the IAM User Guide.

AWSCertificateManagerReadOnly

This policy provides read–only access to ACM Certificates; it allows users to describe, list, and retrieve ACM Certificates.

Copy
{ "Version": "2012-10-17", "Statement": { "Effect": "Allow", "Action": [ "acm:DescribeCertificate", "acm:ListCertificates", "acm:GetCertificate", "acm:ListTagsForCertificate" ], "Resource": "*" } }

To view this AWS managed policy in the console, go to https://console.aws.amazon.com/iam/home#policies/arn:aws:iam::aws:policy/AWSCertificateManagerReadOnly.

AWSCertificateManagerFullAccess

This policy provides full access to all ACM actions and resources.

Copy
{ "Version": "2012-10-17", "Statement": [{ "Effect": "Allow", "Action": ["acm:*"], "Resource": "*" }] }

To view this AWS managed policy in the console, go to https://console.aws.amazon.com/iam/home#policies/arn:aws:iam::aws:policy/AWSCertificateManagerFullAccess.