Attaching a policy to an IAM user group - AWS Identity and Access Management

Attaching a policy to an IAM user group

You can attach an AWS managed policy—that is, a prewritten policy provided by AWS—to a user group, as explained in the following steps. To attach a customer managed policy—that is, a policy with custom permissions that you create—you must first create the policy. For information about creating customer managed policies, see Creating IAM policies.

For more information about permissions and policies, see Access management for AWS resources.

To attach a policy to a user group (console)
  1. Sign in to the AWS Management Console and open the IAM console at

  2. In the navigation pane, choose User groups and then choose the name of the group.

  3. Choose the Permissions tab.

  4. Choose Add permissions and then choose Attach policy.

  5. The current policies attached to the user group are displayed in the Current permissions policies list. In the list of Other permissions policies, select the check box next to the names of the policies to attach. You can use the search box to filter the list of policies by type and policy name.

  6. Choose Attach policies.

To attach a policy to a user group (AWS CLI or AWS API)

Do either of the following: