What are the key differences between IAM roles and IAM policies?

1

What are the key or main differences between IAM roles and IAM policies.

3 個答案
3
已接受的答案

An IAM role is very similar to a user, in that it is an identity with permission policies that determine what the identity can and cannot do in AWS. However, a role does not have any credentials (password or access keys) associated with it.

IAM Policies determine what actions a user, role, or member of a user group can perform, on which AWS resources, and under what conditions.

For more information regarding IAM Identities, I recommend you to take a look to the following documentation: https://docs.aws.amazon.com/IAM/latest/UserGuide/id.html

profile pictureAWS
已回答 2 年前
0

You attach IAM policies (which contain a set of permissions) to an IAM Role. Therefore, a single IAM roles can have multiple IAM policies in it. Lastly, a user can "assume" an IAM Role, meaning it will inherit automatically the policy or policies attached to that Role.

已回答 2 年前
0

IAM Role in AWS is a type of IAM identity that can be authorised to access an AWS resource, whereas an IAM policy defines the permissions of the IAM identity. An IAM Role with no IAM Policy attached to it, won’t have to access any AWS resources. An IAM Policy that is not attached to an IAM Role is of no use. Permissions listed in an IAM policy are only enforced when that policy is attached to an IAM Role identity.

For more information on IAM roles and policies, please refer the following documentation: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html

profile pictureAWS
已回答 1 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南