AWS Documentation » AWS Identity and Access Management » User Guide » Access Management » Managing IAM Policies

Managing IAM Policies

IAM gives you the tools to create and manage all types of IAM policies (managed policies and inline policies). To add permissions to an IAM principal entity—that is, an IAM user, group, or role—you create a policy and then attach the policy to the principal entity. You can attach multiple policies to a principal entity, and each policy can contain multiple permissions.

Consult these resources for details:

• For more information about the different types of IAM policies, see Policies and Permissions.

• For general information about using policies within IAM, see Access Management.

• For information about how permissions are evaluated when multiple policies are in effect for a given IAM principal entity, see Policy Evaluation Logic.

• For information about policy size and naming limitations, see Limitations on IAM Entities and Objects.

Topics

• Creating IAM Policies
• Validating JSON Policies
• Testing IAM Policies with the IAM Policy Simulator
• Adding and Removing IAM Identity Permissions
• Versioning IAM Policies
• Editing IAM Policies
• Deleting IAM Policies
• Refining Permissions Using Service Last Accessed Data