Amazon Web Services Blog: Integrated IAM Policy Generator

You can now create custom IAM (Identity and Access Management) policy documents from the IAM tab of the AWS Management Console. You can use a custom policy document to gain access to a number of advanced IAM features such as limiting access by user agent, time, or IP address, requiring a secure transport, or even enabling cross-account access to selected AWS resources.

Here's a tour! The first step is to click on the Attach User Policy button (you can also do this for IAM groups):

There's a new Policy Generator option:

The Policy Generator allows you to create policy documents for any AWS service that is supported by IAM:

After selecting a service you can choose to allow or deny any number of actions in the policy document that you create:

You can also attach any number of conditions to each of your policies:

If this looks like something that you could use, then I suggest that you head over to the AWS Management Console today and create some policies! I suggest that you review the Permissions and Policies section of the IAM documentation to make sure that you are taking advantage of the power and flexibility of IAM.

-- Jeff;

Featured Events

Learn the Benefits of Running a Private Social Network on AWS
[Online]

Tuesday, May 21, 2013
9:00 AM PT / 12:00 PM ET

Amazon Web Services and tibbr, an AWS Technology Partner invite you to learn how to foster innovation, improve customer support, employee motivation and breakdown departmental silos with a tibbr Private Social Network application running on AWS.
Register Now

Deliver High Performance and Scalable SQL Databases on AWS
[Online]

Wednesday, May 22, 2013
10:00 AM PT / 1:00 PM ET

Amazon Web Services (AWS) and NuoDB, an AWS Partner Network (APN) Technology Partner, invite you to attend this live webinar where you will learn how to use NuoDB to manage your data across multiple data centers and geographies to enable a highly available, secure and scalable system.
Register Now

Maximize Your Microsoft SharePoint Solutions on AWS
[Online]

Tuesday, June 4, 2013
8:00 AM PT / 11:00 AM ET

Join Amazon Web Services (AWS) and Capgemini, an AWS Premier Consulting Partner, to explore how the latest technology innovations with Microsoft SharePoint may be combined to deliver maximum business value to your customers.
Register Now

Deploying Your Business Critical SQL Server Apps on Amazon EC2
[Online]

Wednesday, June 5, 2013
10:00 AM PT / 1:00 PM ET

Amazon Web Services (AWS) and SIOS Technology Corp, an AWS Technology Partner, invite you to attend this live webinar to learn key considerations for deployment of mission critical SQL Server applications to Amazon EC2.
Register Now

Manage Big Data Analytics Using SAP HANA One On AWS
[Online]

Tuesday, June 11, 2013
10:00 AM PT / 1:00 PM ET

Jump Start Your Big Data Analytics using SAP HANA One with RunE2E and AWS. Amazon Web Services (AWS) and RunE2E, an Advanced Consulting Partner, invite you to join this live webinar to learn how SAP HANA One provides the ideal platform to manage your Big Data solutions on AWS.
Register Now

May 2013

Comments

You can follow this conversation by subscribing to the comment feed for this post.

Hi,

I found this page really useful.However, i’ve a doubt.Is it possible to restrict
visibility of main tabs in AWS.I mean, i want one user to only see EC2 tab, nothing else

Posted by: Balu | December 14, 2011 at 11:00 PM