AWS managed policy: AmazonDataZoneFullUserAccess
This policy grants full access to Amazon DataZone, but it doesn't allow the management of domains, users, or associated accounts.
Permissions details
{ "Version": "2012-10-17", "Statement": [ { "Sid": "AmazonDataZoneUserOperations", "Effect": "Allow", "Action": [ "datazone:PostTimeSeriesDataPoints", "datazone:ListTimeSeriesDataPoints", "datazone:GetTimeSeriesDataPoint", "datazone:DeleteTimeSeriesDataPoints", "datazone:GetDomain", "datazone:CreateFormType", "datazone:GetFormType", "datazone:GetIamPortalLoginUrl", "datazone:SearchUserProfiles", "datazone:SearchGroupProfiles", "datazone:GetUserProfile", "datazone:GetGroupProfile", "datazone:ListGroupsForUser", "datazone:DeleteFormType", "datazone:CreateAssetType", "datazone:GetAssetType", "datazone:DeleteAssetType", "datazone:CreateGlossary", "datazone:GetGlossary", "datazone:DeleteGlossary", "datazone:UpdateGlossary", "datazone:CreateGlossaryTerm", "datazone:GetGlossaryTerm", "datazone:DeleteGlossaryTerm", "datazone:UpdateGlossaryTerm", "datazone:CreateAsset", "datazone:GetAsset", "datazone:DeleteAsset", "datazone:CreateAssetRevision", "datazone:ListAssetRevisions", "datazone:AcceptPredictions", "datazone:RejectPredictions", "datazone:Search", "datazone:SearchTypes", "datazone:CreateListingChangeSet", "datazone:DeleteListing", "datazone:SearchListings", "datazone:GetListing", "datazone:CreateDataSource", "datazone:GetDataSource", "datazone:DeleteDataSource", "datazone:UpdateDataSource", "datazone:ListDataSources", "datazone:StartDataSourceRun", "datazone:GetDataSourceRun", "datazone:ListDataSourceRuns", "datazone:ListDataSourceRunActivities", "datazone:ListEnvironmentBlueprintConfigurations", "datazone:CreateEnvironmentBlueprint", "datazone:GetEnvironmentBlueprint", "datazone:DeleteEnvironmentBlueprint", "datazone:UpdateEnvironmentBlueprint", "datazone:ListEnvironmentBlueprints", "datazone:CreateProject", "datazone:UpdateProject", "datazone:GetProject", "datazone:DeleteProject", "datazone:ListProjects", "datazone:CreateProjectMembership", "datazone:DeleteProjectMembership", "datazone:ListProjectMemberships", "datazone:CreateEnvironmentProfile", "datazone:GetEnvironmentProfile", "datazone:UpdateEnvironmentProfile", "datazone:DeleteEnvironmentProfile", "datazone:ListEnvironmentProfiles", "datazone:CreateEnvironment", "datazone:GetEnvironment", "datazone:DeleteEnvironment", "datazone:UpdateEnvironment", "datazone:UpdateEnvironmentDeploymentStatus", "datazone:ListEnvironments", "datazone:ListAccountEnvironments", "datazone:GetEnvironmentActionLink", "datazone:GetEnvironmentCredentials", "datazone:GetSubscriptionTarget", "datazone:DeleteSubscriptionTarget", "datazone:ListSubscriptionTargets", "datazone:CreateSubscriptionRequest", "datazone:AcceptSubscriptionRequest", "datazone:UpdateSubscriptionRequest", "datazone:ListWarehouseMetadata", "datazone:RejectSubscriptionRequest", "datazone:GetSubscriptionRequestDetails", "datazone:ListSubscriptionRequests", "datazone:DeleteSubscriptionRequest", "datazone:GetSubscription", "datazone:CancelSubscription", "datazone:GetSubscriptionEligibility", "datazone:ListSubscriptions", "datazone:RevokeSubscription", "datazone:CreateSubscriptionGrant", "datazone:DeleteSubscriptionGrant", "datazone:GetSubscriptionGrant", "datazone:ListSubscriptionGrants", "datazone:UpdateSubscriptionGrantStatus", "datazone:ListNotifications", "datazone:StartMetadataGenerationRun", "datazone:GetMetadataGenerationRun", "datazone:CancelMetadataGenerationRun", "datazone:ListMetadataGenerationRuns", "datazone:ListLineageNodeHistory", "datazone:GetLineageNode", "datazone:CreateAssetFilter", "datazone:DeleteAssetFilter", "datazone:GetAssetFilter", "datazone:ListAssetFilters", "datazone:UpdateAssetFilter" ], "Resource": "*" }, { "Sid": "RAMResourceShareOperations", "Effect": "Allow", "Action": "ram:GetResourceShareAssociations", "Resource": "*" } ] }
