What are the key differences between IAM roles and IAM policies?

1

What are the key or main differences between IAM roles and IAM policies.

3 réponses
3
Réponse acceptée

An IAM role is very similar to a user, in that it is an identity with permission policies that determine what the identity can and cannot do in AWS. However, a role does not have any credentials (password or access keys) associated with it.

IAM Policies determine what actions a user, role, or member of a user group can perform, on which AWS resources, and under what conditions.

For more information regarding IAM Identities, I recommend you to take a look to the following documentation: https://docs.aws.amazon.com/IAM/latest/UserGuide/id.html

profile pictureAWS
répondu il y a 2 ans
0

You attach IAM policies (which contain a set of permissions) to an IAM Role. Therefore, a single IAM roles can have multiple IAM policies in it. Lastly, a user can "assume" an IAM Role, meaning it will inherit automatically the policy or policies attached to that Role.

répondu il y a 2 ans
0

IAM Role in AWS is a type of IAM identity that can be authorised to access an AWS resource, whereas an IAM policy defines the permissions of the IAM identity. An IAM Role with no IAM Policy attached to it, won’t have to access any AWS resources. An IAM Policy that is not attached to an IAM Role is of no use. Permissions listed in an IAM policy are only enforced when that policy is attached to an IAM Role identity.

For more information on IAM roles and policies, please refer the following documentation: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html

profile pictureAWS
répondu il y a un an

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions