AWS Identity and Access Management
User Guide

IAM: Access the Policy Simulator Console Based on User Path

This example shows how you might create a policy that allows using the policy simulator console only for those users that have the path USER-PATH-NAME. To use this policy, replace the red text in the example policy with your own information.

You can access the IAM Policy Simulator at:

{ "Version": "2012-10-17", "Statement": [ { "Action": [ "iam:GetPolicy", "iam:GetUserPolicy" ], "Effect": "Allow", "Resource": "*" }, { "Action": [ "iam:GetUser", "iam:ListAttachedUserPolicies", "iam:ListGroupsForUser", "iam:ListUserPolicies", "iam:ListUsers" ], "Effect": "Allow", "Resource": "arn:aws:iam::<ACCOUNTNUMBER>:user/<USER-PATH-NAME>/*" } ] }