AWS Managed Policies

Setting managed policies

An AWS managed policy is a standalone policy that is created and administered by AWS.
— AWS documentation

User managed policies

The user managed policy applies to the learner that is taking the track. These permissions should be limited to the least access necessary to complete the track

Admin managed policies

An admin managed policy is the policy that applies to the lifecycle scripts. This can be an elevated permission to deploy resources on the cloud when a sandbox is deployed.

Example managed policy

The managed policies method is easier than the IAM and SCP policies but may grant learners more than the minimum access required to complete a track. The following example grants Virtual Private Cloud (VPC) administrator access, which allows learners to create and manage VPC networks:

Update your AWS account by entering the following in the User Managed Policies field:

arn:aws:iam::aws:policy/AmazonVPCFullAccess

And clicking Add.

Edit your config.yml file to include this content:

aws_accounts:
- name: awsaccount
  managed_policies:
  - arn:aws:iam::aws:policy/AmazonVPCFullAccess

See AWS managed policies on the AWS docs site for more information.

PreviousAWS Environment Variables NextAWS IAM Policies

Last updated 2 months ago

Was this helpful?