AWS Identity and Access Management
User Guide

IAM: Access the Policy Simulator Console Based on User Path

This example shows how you might create a policy that allows using the policy simulator console only for those users that have the path Department/Development. This policy grants the permissions necessary to complete this action from the AWS API or AWS CLI only. To use this policy, replace the red italicized text in the example policy with your own information.

You can access the IAM Policy Simulator at:

{ "Version": "2012-10-17", "Statement": [ { "Action": [ "iam:GetPolicy", "iam:GetUserPolicy" ], "Effect": "Allow", "Resource": "*" }, { "Action": [ "iam:GetUser", "iam:ListAttachedUserPolicies", "iam:ListGroupsForUser", "iam:ListUserPolicies", "iam:ListUsers" ], "Effect": "Allow", "Resource": "arn:aws:iam::*:user/Department/Development/*" } ] }