AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.
The simulation does not perform the API actions; it only checks the authorization to determine if the simulated policies allow or deny the actions.
If you want to simulate existing policies attached to an IAM user, group, or role, use SimulatePrincipalPolicy instead.
Context keys are variables maintained by AWS and its services that provide details
about the context of an API query request. You can use the Condition
element of an IAM policy to evaluate context keys. To get the list of context keys
that the policies require for correct simulation, use GetContextKeysForCustomPolicy.
If the output is long, you can use MaxItems
and Marker
parameters
to paginate the results.
Namespace: Amazon.IdentityManagement
Assembly: AWSSDK.dll
Version: (assembly version)
public abstract SimulateCustomPolicyResponse SimulateCustomPolicy( SimulateCustomPolicyRequest request )
Container for the necessary parameters to execute the SimulateCustomPolicy service method.
Exception | Condition |
---|---|
InvalidInputException | The request was rejected because an invalid or out-of-range value was supplied for an input parameter. |
PolicyEvaluationException | The request failed because a provided policy could not be successfully evaluated. An additional detail message indicates the source of the failure. |
.NET Framework:
Supported in: 4.5, 4.0, 3.5