1 回答
- 最新
- 投票最多
- 评论最多
-1
Hi Shantanu,
It all depends upon what "Actions" are allowed in the attached policy to the tole. Either you can choose the closest role that is readily available AWS Managed Policy (which closely matches your requirement) or you can tailor a Custom Managed Policy with the appropriate Actions allowed (i.e. Read Only) to specific resources.
https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_managed-vs-inline.html
https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_action.html
已回答 2 年前