AWS IAM Policy types: identity-based and resource-based

Learn about the first two policy types supported by AWS.

We'll cover the following

All IAM policies follow the structure detailed in the previous lessons, but how a policy behaves is determined by what it is attached to. We can attach policies to 5 entities, and they are named accordingly:

  • Identity-based policies: Attached to an IAM user, group, or role
  • Resource-based policies: Attached to AWS resources
  • Service-control policies: Attached to accounts
  • Session policy: Attached to assume role sessions
  • Permissions boundary: Attached to identities as a boundary

Get hands-on with 1000+ tech skills courses.

Learn to code, grow your skills, and succeed in your tech interview