A policy is a document that formally states one or more permissions. You apply permissions to IAM users, groups, and roles by creating policies. There are two types of IAM policies.
- Managed policies: These are standalone policies that you can attach to multiple users, groups, and roles in the AWS account. Managed policies can be AWS Managed and Customer Managed. If you are new to the AWS, then start using AWS Managed policies.
- Inline policies: These are policies that you create and manage; they are embedded directly into a single user, group, or role. Resource-based policies are another form of inline policy.
You can use the Get-IAMPolicies cmdlet for the AWS Managed and Customer Managed IAM policies:
PS C:\> Get-IAMPolicies | where-object {$_.PolicyName -like "*EC2*"} |format-table -Property PolicyName
AWS Managed and Customer Managed policies can...