I am new to AWS. I tried to create a read-only IAM user in AWS console. I am not able to find the right permission. What permission I should grant? Please advise.
You can use the AWS managed policy named ReadOnlyAccess: the ReadOnlyAccess AWS managed policy provides read-only access to all AWS services and resources. When a service launches a new feature, AWS adds read-only permissions for new operations and resources.
Most essential Amazon EC2 actions don't support resource-level permissions or conditions, and isolating IAM users or groups of user's access to Amazon EC2 resources by any criteria other than AWS Region doesn't fit most use cases. Instead, consider linking multiple different AWS accounts through AWS Organizations.
There is an IAM Policy called ReadOnlyAccess
that will (mostly) grant read-only access to all services. (I say 'mostly' because people might have different concepts of what is read-only.)
Individual services also have their own policies, such as CloudSearchReadOnlyAccess
and AmazonPollyReadOnlyAccess
.
To grant a user these permissions:
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With