From 1f93f675901f2bc0f4607e99c6f47c38ad8bdc4d Mon Sep 17 00:00:00 2001 From: udondan Date: Thu, 15 Aug 2024 01:34:18 +0000 Subject: [PATCH] Updates AWS managed policies --- .../AWSSSMForSAPServiceLinkedRolePolicy.json | 60 +++++++++++++- .../AWSSupportServiceRolePolicy.json | 80 ++++++++++++++++++- ...ognitoUnAuthedIdentitiesSessionPolicy.json | 10 ++- .../AmazonECS_FullAccess.json | 23 +++++- ...AmazonElasticFileSystemReadOnlyAccess.json | 1 + .../AmazonGuardDutyServiceRolePolicy.json | 1 + .../AmazonInspector2ServiceRolePolicy.json | 1 + .../AmazonRDSBetaServiceRolePolicy.json | 7 -- .../AmazonRDSPreviewServiceRolePolicy.json | 7 -- .../AmazonRoute53ResolverFullAccess.json | 1 + .../AmazonRoute53ResolverReadOnlyAccess.json | 1 + .../AmazonWorkSpacesThinClientFullAccess.json | 39 +++++++++ ...zonWorkSpacesThinClientReadOnlyAccess.json | 34 +++++++- .../AwsGlueSessionUserRestrictedPolicy.json | 15 +++- ...sGlueSessionUserRestrictedServiceRole.json | 15 +++- .../SSMQuickSetupRolePolicy.json | 7 +- .../_static/managed-policies/index.json | 2 +- .../aws-managed-policies/cdk-iam-floyd.ts | 5 ++ .../aws-managed-policies/iam-floyd.ts | 2 + 19 files changed, 285 insertions(+), 26 deletions(-) create mode 100644 docs/source/_static/managed-policies/AmazonWorkSpacesThinClientFullAccess.json diff --git a/docs/source/_static/managed-policies/AWSSSMForSAPServiceLinkedRolePolicy.json b/docs/source/_static/managed-policies/AWSSSMForSAPServiceLinkedRolePolicy.json index c73d7e526..61ea9ee2f 100644 --- a/docs/source/_static/managed-policies/AWSSSMForSAPServiceLinkedRolePolicy.json +++ b/docs/source/_static/managed-policies/AWSSSMForSAPServiceLinkedRolePolicy.json @@ -117,7 +117,7 @@ "Sid": "CreateServiceLinkedRole", "Effect": "Allow", "Action": "iam:CreateServiceLinkedRole", - "Resource": "arn:*:iam::*:role/aws-service-role/servicecatalog-appregistry.amazonaws.com/AWSServiceRoleForAWSServiceCatalogAppRegistry", + "Resource": "arn:aws:iam::*:role/aws-service-role/servicecatalog-appregistry.amazonaws.com/AWSServiceRoleForAWSServiceCatalogAppRegistry", "Condition": { "StringEquals": { "iam:AWSServiceName": "servicecatalog-appregistry.amazonaws.com" @@ -271,6 +271,64 @@ "ec2:resourceTag/SSMForSAPManaged": "True" } } + }, + { + "Sid": "SsmSapResourceGroup", + "Effect": "Allow", + "Action": [ + "resource-groups:Tag", + "resource-groups:CreateGroup" + ], + "Resource": "arn:aws:resource-groups:*:*:group/SystemsManagerForSAP-*", + "Condition": { + "StringEquals": { + "aws:RequestTag/SSMForSAPCreated": "True" + }, + "ArnLike": { + "aws:RequestTag/awsApplication": "arn:aws:resource-groups:*:*:group/*/*" + }, + "ForAllValues:StringEquals": { + "aws:TagKeys": [ + "SSMForSAPCreated", + "awsApplication" + ] + } + } + }, + { + "Sid": "ManageSsmSapTagsOnEc2Instances", + "Effect": "Allow", + "Action": [ + "ec2:CreateTags", + "ec2:DeleteTags" + ], + "Resource": "arn:aws:ec2:*:*:instance/*", + "Condition": { + "StringEquals": { + "aws:ResourceTag/SSMForSAPManaged": "True" + }, + "ForAllValues:StringLike": { + "aws:TagKeys": [ + "SystemsManagerForSAP-*" + ] + } + } + }, + { + "Sid": "ManageSsmSapTagsOnEbsVolumes", + "Effect": "Allow", + "Action": [ + "ec2:CreateTags", + "ec2:DeleteTags" + ], + "Resource": "arn:aws:ec2:*:*:volume/*", + "Condition": { + "ForAllValues:StringLike": { + "aws:TagKeys": [ + "SystemsManagerForSAP-*" + ] + } + } } ] } \ No newline at end of file diff --git a/docs/source/_static/managed-policies/AWSSupportServiceRolePolicy.json b/docs/source/_static/managed-policies/AWSSupportServiceRolePolicy.json index 17a715cd3..5395a46ec 100644 --- a/docs/source/_static/managed-policies/AWSSupportServiceRolePolicy.json +++ b/docs/source/_static/managed-policies/AWSSupportServiceRolePolicy.json @@ -84,6 +84,8 @@ "access-analyzer:listArchiveRules", "access-analyzer:listFindings", "access-analyzer:listPolicyGenerations", + "account:getRegionOptStatus", + "account:listRegions", "acm-pca:describeCertificateAuthority", "acm-pca:describeCertificateAuthorityAuditReport", "acm-pca:getCertificate", @@ -259,6 +261,7 @@ "autoscaling:describeScalingActivities", "autoscaling:describeScalingProcessTypes", "autoscaling:describeScheduledActions", + "autoscaling:describeTrafficSources", "autoscaling:describeTags", "autoscaling:describeTerminationPolicyTypes", "autoscaling:describeWarmPool", @@ -318,6 +321,28 @@ "batch:describeJobQueues", "batch:describeJobs", "batch:listJobs", + "bedrock:getAgent", + "bedrock:getAgentActionGroup", + "bedrock:getAgentAlias", + "bedrock:getAgentKnowledgeBase", + "bedrock:getAgentVersion", + "bedrock:getCustomModel", + "bedrock:getDataSource", + "bedrock:getIngestionJob", + "bedrock:getKnowledgeBase", + "bedrock:getModelCustomizationJob", + "bedrock:getModelInvocationLoggingConfiguration", + "bedrock:listAgentActionGroups", + "bedrock:listAgentAliases", + "bedrock:listAgentKnowledgeBases", + "bedrock:listAgents", + "bedrock:listAgentVersions", + "bedrock:listCustomModels", + "bedrock:listDataSources", + "bedrock:listIngestionJobs", + "bedrock:listKnowledgeBases", + "bedrock:listModelCustomizationJobs", + "bedrock:listProvisionedModelThroughputs", "braket:getDevice", "braket:getQuantumTask", "braket:searchDevices", @@ -519,6 +544,18 @@ "codecommit:getRepositoryTriggers", "codecommit:listBranches", "codecommit:listRepositories", + "codeconnections:getConnection", + "codeconnections:getHost", + "codeconnections:getRepositoryLink", + "codeconnections:getRepositorySyncStatus", + "codeconnections:getResourceSyncStatus", + "codeconnections:getSyncBlockerSummary", + "codeconnections:getSyncConfiguration", + "codeconnections:listConnections", + "codeconnections:listHosts", + "codeconnections:listRepositoryLinks", + "codeconnections:listRepositorySyncDefinitions", + "codeconnections:listSyncConfigurations", "codedeploy:batchGetApplicationRevisions", "codedeploy:batchGetApplications", "codedeploy:batchGetDeploymentGroups", @@ -746,6 +783,23 @@ "dax:describeParameterGroups", "dax:describeParameters", "dax:describeSubnetGroups", + "deadline:listAvailableMeteredProducts", + "deadline:listBudgets", + "deadline:listFarmMembers", + "deadline:listFarms", + "deadline:listFleetMembers", + "deadline:listFleets", + "deadline:listJobMembers", + "deadline:listJobs", + "deadline:listLicenseEndpoints", + "deadline:listMeteredProducts", + "deadline:listMonitors", + "deadline:listQueueEnvironments", + "deadline:listQueueFleetAssociations", + "deadline:listQueueMembers", + "deadline:listQueues", + "deadline:listStorageProfiles", + "deadline:listWorkers", "detective:getMembers", "detective:listGraphs", "detective:listInvitations", @@ -961,6 +1015,7 @@ "ec2:describeSecurityGroups", "ec2:describeSnapshotAttribute", "ec2:describeSnapshots", + "ec2:describeSnapshotTierStatus", "ec2:describeSpotDatafeedSubscription", "ec2:describeSpotFleetInstances", "ec2:describeSpotFleetRequestHistory", @@ -1006,6 +1061,7 @@ "ec2:describeVpnGateways", "ec2:getAssociatedIpv6PoolCidrs", "ec2:getCapacityReservationUsage", + "ec2:getSubnetCidrReservations", "ec2:getCoipPoolUsage", "ec2:getConsoleOutput", "ec2:getConsoleScreenshot", @@ -1084,6 +1140,8 @@ "eks:describeFargateProfile", "eks:describeIdentityProviderConfig", "eks:describeNodegroup", + "eks:describePodIdentityAssociation", + "eks:listPodIdentityAssociations", "eks:describeUpdate", "eks:listAccessEntries", "eks:listAccessPolicies", @@ -1149,6 +1207,9 @@ "elasticloadbalancing:describeLoadBalancerPolicies", "elasticloadbalancing:describeLoadBalancerPolicyTypes", "elasticloadbalancing:describeLoadBalancers", + "elasticloadbalancing:describeTrustStores", + "elasticloadbalancing:describeTrustStoreAssociations", + "elasticloadbalancing:describeTrustStoreRevocations", "elasticloadbalancing:describeRules", "elasticloadbalancing:describeSSLPolicies", "elasticloadbalancing:describeTags", @@ -1279,6 +1340,7 @@ "forecast:listForecastExportJobs", "forecast:listForecasts", "forecast:listPredictors", + "freetier:getFreeTierUsage", "fsx:describeBackups", "fsx:describeDataRepositoryAssociations", "fsx:describeDataRepositoryTasks", @@ -1572,6 +1634,8 @@ "inspector2:batchGetAccountStatus", "inspector2:batchGetFreeTrialInfo", "inspector2:describeOrganizationConfiguration", + "inspector2:getConfiguration", + "inspector2:getEc2DeepInspectionConfiguration", "inspector2:getDelegatedAdminAccount", "inspector2:getMember", "inspector2:getSbomExport", @@ -2228,6 +2292,12 @@ "opsworks:getHostnameSuggestion", "organizations:listAccounts", "organizations:listTagsForResource", + "osis:getPipeline", + "osis:getPipelineBlueprint", + "osis:getPipelineChangeProgress", + "osis:listPipelineBlueprints", + "osis:listPipelines", + "osis:validatePipeline", "outposts:getCatalogItem", "outposts:getConnection", "outposts:getOrder", @@ -3282,6 +3352,8 @@ "workspaces-web:listUserSettings", "workspaces:describeAccount", "workspaces:describeAccountModifications", + "workspaces:describeApplicationAssociations", + "workspaces:describeWorkspaceAssociations", "workspaces:describeIpGroups", "workspaces:describeTags", "workspaces:describeWorkspaceBundles", @@ -3293,7 +3365,13 @@ "xray:getGroup", "xray:getGroups", "xray:getSamplingRules", - "xray:listResourcePolicies" + "xray:listResourcePolicies", + "xray:getInsightImpactGraph", + "xray:getSamplingStatisticSummaries", + "xray:getSamplingTargets", + "xray:getServiceGraph", + "xray:getTimeSeriesServiceStatistics", + "xray:getTraceGraph" ], "Effect": "Allow", "Resource": [ diff --git a/docs/source/_static/managed-policies/AmazonCognitoUnAuthedIdentitiesSessionPolicy.json b/docs/source/_static/managed-policies/AmazonCognitoUnAuthedIdentitiesSessionPolicy.json index 435e80f78..c771b414f 100644 --- a/docs/source/_static/managed-policies/AmazonCognitoUnAuthedIdentitiesSessionPolicy.json +++ b/docs/source/_static/managed-policies/AmazonCognitoUnAuthedIdentitiesSessionPolicy.json @@ -2,6 +2,7 @@ "Version": "2012-10-17", "Statement": [ { + "Sid": "CognitoUnAuthedIdentitiesSessionPolicy", "Effect": "Allow", "Action": [ "rum:PutRumEvents", @@ -13,7 +14,14 @@ "rekognition:*", "mobiletargeting:*", "firehose:*", - "personalize:*" + "personalize:*", + "geo:GetMap*", + "geo:SearchPlaceIndex*", + "geo:GetPlace", + "geo:CalculateRoute*", + "geo:*Geofence", + "geo:*Geofences", + "geo:*DevicePosition*" ], "Resource": "*" } diff --git a/docs/source/_static/managed-policies/AmazonECS_FullAccess.json b/docs/source/_static/managed-policies/AmazonECS_FullAccess.json index fa569f519..04a08ee96 100644 --- a/docs/source/_static/managed-policies/AmazonECS_FullAccess.json +++ b/docs/source/_static/managed-policies/AmazonECS_FullAccess.json @@ -2,6 +2,7 @@ "Version": "2012-10-17", "Statement": [ { + "Sid": "ECSIntegrationsManagementPolicy", "Effect": "Allow", "Action": [ "application-autoscaling:DeleteScalingPolicy", @@ -124,6 +125,7 @@ ] }, { + "Sid": "SSMPolicy", "Effect": "Allow", "Action": [ "ssm:GetParameter", @@ -133,6 +135,7 @@ "Resource": "arn:aws:ssm:*:*:parameter/aws/service/ecs*" }, { + "Sid": "ManagedCloudformationResourcesCleanupPolicy", "Effect": "Allow", "Action": [ "ec2:DeleteInternetGateway", @@ -150,6 +153,7 @@ } }, { + "Sid": "TasksPassRolePolicy", "Action": "iam:PassRole", "Effect": "Allow", "Resource": [ @@ -162,6 +166,20 @@ } }, { + "Sid": "InfrastructurePassRolePolicy", + "Action": "iam:PassRole", + "Effect": "Allow", + "Resource": [ + "arn:aws:iam::*:role/ecsInfrastructureRole" + ], + "Condition": { + "StringEquals": { + "iam:PassedToService": "ecs.amazonaws.com" + } + } + }, + { + "Sid": "InstancePassRolePolicy", "Action": "iam:PassRole", "Effect": "Allow", "Resource": [ @@ -177,6 +195,7 @@ } }, { + "Sid": "AutoScalingPassRolePolicy", "Action": "iam:PassRole", "Effect": "Allow", "Resource": [ @@ -192,14 +211,15 @@ } }, { + "Sid": "ServiceLinkedRoleCreationPolicy", "Effect": "Allow", "Action": "iam:CreateServiceLinkedRole", "Resource": "*", "Condition": { "StringLike": { "iam:AWSServiceName": [ - "autoscaling.amazonaws.com", "ecs.amazonaws.com", + "autoscaling.amazonaws.com", "ecs.application-autoscaling.amazonaws.com", "spot.amazonaws.com", "spotfleet.amazonaws.com" @@ -208,6 +228,7 @@ } }, { + "Sid": "ELBTaggingPolicy", "Effect": "Allow", "Action": [ "elasticloadbalancing:AddTags" diff --git a/docs/source/_static/managed-policies/AmazonElasticFileSystemReadOnlyAccess.json b/docs/source/_static/managed-policies/AmazonElasticFileSystemReadOnlyAccess.json index b395c450c..b4ae71317 100644 --- a/docs/source/_static/managed-policies/AmazonElasticFileSystemReadOnlyAccess.json +++ b/docs/source/_static/managed-policies/AmazonElasticFileSystemReadOnlyAccess.json @@ -2,6 +2,7 @@ "Version": "2012-10-17", "Statement": [ { + "Sid": "ElasticFileSystemReadOnlyAccess", "Effect": "Allow", "Action": [ "cloudwatch:DescribeAlarmsForMetric", diff --git a/docs/source/_static/managed-policies/AmazonGuardDutyServiceRolePolicy.json b/docs/source/_static/managed-policies/AmazonGuardDutyServiceRolePolicy.json index 24ef613ba..a25004544 100644 --- a/docs/source/_static/managed-policies/AmazonGuardDutyServiceRolePolicy.json +++ b/docs/source/_static/managed-policies/AmazonGuardDutyServiceRolePolicy.json @@ -27,6 +27,7 @@ "eks:ListClusters", "eks:DescribeCluster", "ec2:DescribeVpcEndpointServices", + "ec2:DescribeVpcs", "ec2:DescribeSecurityGroups", "ecs:ListClusters", "ecs:DescribeClusters" diff --git a/docs/source/_static/managed-policies/AmazonInspector2ServiceRolePolicy.json b/docs/source/_static/managed-policies/AmazonInspector2ServiceRolePolicy.json index 43107177c..854ba542a 100644 --- a/docs/source/_static/managed-policies/AmazonInspector2ServiceRolePolicy.json +++ b/docs/source/_static/managed-policies/AmazonInspector2ServiceRolePolicy.json @@ -93,6 +93,7 @@ "lambda:ListFunctions", "lambda:GetFunction", "lambda:GetLayerVersion", + "lambda:ListTags", "cloudwatch:GetMetricData" ], "Resource": "*" diff --git a/docs/source/_static/managed-policies/AmazonRDSBetaServiceRolePolicy.json b/docs/source/_static/managed-policies/AmazonRDSBetaServiceRolePolicy.json index bba51e8c0..2945d0cdd 100644 --- a/docs/source/_static/managed-policies/AmazonRDSBetaServiceRolePolicy.json +++ b/docs/source/_static/managed-policies/AmazonRDSBetaServiceRolePolicy.json @@ -38,13 +38,6 @@ ], "Resource": "*" }, - { - "Effect": "Allow", - "Action": [ - "sns:Publish" - ], - "Resource": "*" - }, { "Effect": "Allow", "Action": [ diff --git a/docs/source/_static/managed-policies/AmazonRDSPreviewServiceRolePolicy.json b/docs/source/_static/managed-policies/AmazonRDSPreviewServiceRolePolicy.json index 3053bc56b..129aeed6e 100644 --- a/docs/source/_static/managed-policies/AmazonRDSPreviewServiceRolePolicy.json +++ b/docs/source/_static/managed-policies/AmazonRDSPreviewServiceRolePolicy.json @@ -41,13 +41,6 @@ ], "Resource": "*" }, - { - "Effect": "Allow", - "Action": [ - "sns:Publish" - ], - "Resource": "*" - }, { "Effect": "Allow", "Action": [ diff --git a/docs/source/_static/managed-policies/AmazonRoute53ResolverFullAccess.json b/docs/source/_static/managed-policies/AmazonRoute53ResolverFullAccess.json index 2ee114cbd..1e86a8293 100644 --- a/docs/source/_static/managed-policies/AmazonRoute53ResolverFullAccess.json +++ b/docs/source/_static/managed-policies/AmazonRoute53ResolverFullAccess.json @@ -2,6 +2,7 @@ "Version": "2012-10-17", "Statement": [ { + "Sid": "AmazonRoute53ResolverFullAccess", "Effect": "Allow", "Action": [ "route53resolver:*", diff --git a/docs/source/_static/managed-policies/AmazonRoute53ResolverReadOnlyAccess.json b/docs/source/_static/managed-policies/AmazonRoute53ResolverReadOnlyAccess.json index 61b9adb16..064d2e13c 100644 --- a/docs/source/_static/managed-policies/AmazonRoute53ResolverReadOnlyAccess.json +++ b/docs/source/_static/managed-policies/AmazonRoute53ResolverReadOnlyAccess.json @@ -2,6 +2,7 @@ "Version": "2012-10-17", "Statement": [ { + "Sid": "AmazonRoute53ResolverReadOnlyAccess", "Effect": "Allow", "Action": [ "route53resolver:Get*", diff --git a/docs/source/_static/managed-policies/AmazonWorkSpacesThinClientFullAccess.json b/docs/source/_static/managed-policies/AmazonWorkSpacesThinClientFullAccess.json new file mode 100644 index 000000000..36f11a840 --- /dev/null +++ b/docs/source/_static/managed-policies/AmazonWorkSpacesThinClientFullAccess.json @@ -0,0 +1,39 @@ +{ + "Version": "2012-10-17", + "Statement": [ + { + "Sid": "AllowThinClientFullAccess", + "Effect": "Allow", + "Action": [ + "thinclient:*" + ], + "Resource": "*" + }, + { + "Sid": "AllowWorkSpacesAccess", + "Effect": "Allow", + "Action": [ + "workspaces:DescribeWorkspaceDirectories" + ], + "Resource": "*" + }, + { + "Sid": "AllowWorkSpacesWebAccess", + "Effect": "Allow", + "Action": [ + "workspaces-web:GetPortal", + "workspaces-web:GetUserSettings", + "workspaces-web:ListPortals" + ], + "Resource": "*" + }, + { + "Sid": "AllowAppStreamAccess", + "Effect": "Allow", + "Action": [ + "appstream:DescribeStacks" + ], + "Resource": "*" + } + ] +} \ No newline at end of file diff --git a/docs/source/_static/managed-policies/AmazonWorkSpacesThinClientReadOnlyAccess.json b/docs/source/_static/managed-policies/AmazonWorkSpacesThinClientReadOnlyAccess.json index 95d20e06b..1018dc30a 100644 --- a/docs/source/_static/managed-policies/AmazonWorkSpacesThinClientReadOnlyAccess.json +++ b/docs/source/_static/managed-policies/AmazonWorkSpacesThinClientReadOnlyAccess.json @@ -5,16 +5,42 @@ "Sid": "AllowThinClientReadAccess", "Effect": "Allow", "Action": [ - "thinclient:GetEnvironment", - "thinclient:ListEnvironments", "thinclient:GetDevice", + "thinclient:GetEnvironment", + "thinclient:GetSoftwareSet", "thinclient:ListDevices", "thinclient:ListDeviceSessions", - "thinclient:GetSoftwareSet", + "thinclient:ListEnvironments", "thinclient:ListSoftwareSets", "thinclient:ListTagsForResource" ], - "Resource": "arn:aws:thinclient:*:*:*" + "Resource": "*" + }, + { + "Sid": "AllowWorkSpacesAccess", + "Effect": "Allow", + "Action": [ + "workspaces:DescribeWorkspaceDirectories" + ], + "Resource": "*" + }, + { + "Sid": "AllowWorkSpacesWebAccess", + "Effect": "Allow", + "Action": [ + "workspaces-web:GetPortal", + "workspaces-web:GetUserSettings", + "workspaces-web:ListPortals" + ], + "Resource": "*" + }, + { + "Sid": "AllowAppStreamAccess", + "Effect": "Allow", + "Action": [ + "appstream:DescribeStacks" + ], + "Resource": "*" } ] } \ No newline at end of file diff --git a/docs/source/_static/managed-policies/AwsGlueSessionUserRestrictedPolicy.json b/docs/source/_static/managed-policies/AwsGlueSessionUserRestrictedPolicy.json index 0dd1a8bb1..f475fa9f1 100644 --- a/docs/source/_static/managed-policies/AwsGlueSessionUserRestrictedPolicy.json +++ b/docs/source/_static/managed-policies/AwsGlueSessionUserRestrictedPolicy.json @@ -21,6 +21,20 @@ } } }, + { + "Sid": "AllowGlueTaggingAction", + "Effect": "Allow", + "Action": [ + "glue:TagResource" + ], + "Resource": "arn:aws:glue:*:*:session/*", + "Condition": { + "StringEquals": { + "aws:ResourceTag/owner": "${aws:userid}", + "aws:RequestTag/owner": "${aws:userid}" + } + } + }, { "Sid": "AllowCompletionActions", "Effect": "Allow", @@ -67,7 +81,6 @@ "Sid": "DenyTagActions", "Effect": "Deny", "Action": [ - "glue:TagResource", "glue:UntagResource", "tag:TagResources", "tag:UntagResources" diff --git a/docs/source/_static/managed-policies/AwsGlueSessionUserRestrictedServiceRole.json b/docs/source/_static/managed-policies/AwsGlueSessionUserRestrictedServiceRole.json index 3144fa1b3..4e71069c6 100644 --- a/docs/source/_static/managed-policies/AwsGlueSessionUserRestrictedServiceRole.json +++ b/docs/source/_static/managed-policies/AwsGlueSessionUserRestrictedServiceRole.json @@ -53,6 +53,20 @@ } } }, + { + "Sid": "AllowGlueTaggingAction", + "Effect": "Allow", + "Action": [ + "glue:TagResource" + ], + "Resource": "arn:aws:glue:*:*:session/*", + "Condition": { + "StringEquals": { + "aws:ResourceTag/owner": "${aws:userid}", + "aws:RequestTag/owner": "${aws:userid}" + } + } + }, { "Sid": "AllowStatementActions", "Effect": "Allow", @@ -88,7 +102,6 @@ "Sid": "DenyTagActions", "Effect": "Deny", "Action": [ - "glue:TagResource", "glue:UntagResource", "tag:TagResources", "tag:UntagResources" diff --git a/docs/source/_static/managed-policies/SSMQuickSetupRolePolicy.json b/docs/source/_static/managed-policies/SSMQuickSetupRolePolicy.json index 996f3b1ec..a4101ba34 100644 --- a/docs/source/_static/managed-policies/SSMQuickSetupRolePolicy.json +++ b/docs/source/_static/managed-policies/SSMQuickSetupRolePolicy.json @@ -62,7 +62,9 @@ ], "Resource": [ "arn:aws:cloudformation:*:*:stackset/AWS-QuickSetup-*", - "arn:aws:cloudformation:*:*:stack/StackSet-AWS-QuickSetup-*" + "arn:aws:cloudformation:*:*:stackset/SSMQuickSetup*", + "arn:aws:cloudformation:*:*:stack/StackSet-AWS-QuickSetup-*", + "arn:aws:cloudformation:*:*:stack/StackSet-SSMQuickSetup*" ] }, { @@ -74,8 +76,11 @@ ], "Resource": [ "arn:aws:cloudformation:*:*:stackset/AWS-QuickSetup-*", + "arn:aws:cloudformation:*:*:stackset/SSMQuickSetup*", "arn:aws:cloudformation:*:*:stack/StackSet-AWS-QuickSetup-*", + "arn:aws:cloudformation:*:*:stack/StackSet-SSMQuickSetup*", "arn:aws:cloudformation:*:*:stackset-target/AWS-QuickSetup-*", + "arn:aws:cloudformation:*:*:stackset-target/SSMQuickSetup*", "arn:aws:cloudformation:*:*:type/resource/*" ], "Condition": { diff --git a/docs/source/_static/managed-policies/index.json b/docs/source/_static/managed-policies/index.json index 5ff6a1e0b..c03a89571 100644 --- a/docs/source/_static/managed-policies/index.json +++ b/docs/source/_static/managed-policies/index.json @@ -1 +1 @@ -["AccessAnalyzerServiceRolePolicy","AdministratorAccess","AdministratorAccess-Amplify","AdministratorAccess-AWSElasticBeanstalk","AlexaForBusinessDeviceSetup","AlexaForBusinessFullAccess","AlexaForBusinessGatewayExecution","AlexaForBusinessLifesizeDelegatedAccessPolicy","AlexaForBusinessNetworkProfileServicePolicy","AlexaForBusinessPolyDelegatedAccessPolicy","AlexaForBusinessReadOnlyAccess","AmazonAPIGatewayAdministrator","AmazonAPIGatewayInvokeFullAccess","AmazonAPIGatewayPushToCloudWatchLogs","AmazonAppFlowFullAccess","AmazonAppFlowReadOnlyAccess","AmazonAppStreamFullAccess","AmazonAppStreamPCAAccess","AmazonAppStreamReadOnlyAccess","AmazonAppStreamServiceAccess","AmazonAthenaFullAccess","AmazonAugmentedAIFullAccess","AmazonAugmentedAIHumanLoopFullAccess","AmazonAugmentedAIIntegratedAPIAccess","AmazonBedrockFullAccess","AmazonBedrockReadOnly","AmazonBedrockStudioPermissionsBoundary","AmazonBraketFullAccess","AmazonBraketJobsExecutionPolicy","AmazonBraketServiceRolePolicy","AmazonChimeFullAccess","AmazonChimeReadOnly","AmazonChimeSDK","AmazonChimeSDKMediaPipelinesServiceLinkedRolePolicy","AmazonChimeSDKMessagingServiceRolePolicy","AmazonChimeServiceRolePolicy","AmazonChimeTranscriptionServiceLinkedRolePolicy","AmazonChimeUserManagement","AmazonChimeVoiceConnectorServiceLinkedRolePolicy","AmazonCloudDirectoryFullAccess","AmazonCloudDirectoryReadOnlyAccess","AmazonCloudWatchEvidentlyFullAccess","AmazonCloudWatchEvidentlyReadOnlyAccess","AmazonCloudWatchEvidentlyServiceRolePolicy","AmazonCloudWatchRUMFullAccess","AmazonCloudWatchRUMReadOnlyAccess","AmazonCloudWatchRUMServiceRolePolicy","AmazonCodeCatalystFullAccess","AmazonCodeCatalystReadOnlyAccess","AmazonCodeCatalystSupportAccess","AmazonCodeGuruProfilerAgentAccess","AmazonCodeGuruProfilerFullAccess","AmazonCodeGuruProfilerReadOnlyAccess","AmazonCodeGuruReviewerFullAccess","AmazonCodeGuruReviewerReadOnlyAccess","AmazonCodeGuruReviewerServiceRolePolicy","AmazonCodeGuruSecurityFullAccess","AmazonCodeGuruSecurityScanAccess","AmazonCognitoDeveloperAuthenticatedIdentities","AmazonCognitoIdpEmailServiceRolePolicy","AmazonCognitoIdpServiceRolePolicy","AmazonCognitoPowerUser","AmazonCognitoReadOnly","AmazonCognitoUnAuthedIdentitiesSessionPolicy","AmazonCognitoUnauthenticatedIdentities","AmazonConnect_FullAccess","AmazonConnectCampaignsServiceLinkedRolePolicy","AmazonConnectReadOnlyAccess","AmazonConnectServiceLinkedRolePolicy","AmazonConnectSynchronizationServiceRolePolicy","AmazonConnectVoiceIDFullAccess","AmazonDataZoneDomainExecutionRolePolicy","AmazonDataZoneEnvironmentRolePermissionsBoundary","AmazonDataZoneFullAccess","AmazonDataZoneFullUserAccess","AmazonDataZoneGlueManageAccessRolePolicy","AmazonDataZoneRedshiftGlueProvisioningPolicy","AmazonDataZoneRedshiftManageAccessRolePolicy","AmazonDataZoneSageMakerEnvironmentRolePermissionsBoundary","AmazonDataZoneSageMakerManageAccessRolePolicy","AmazonDataZoneSageMakerProvisioningRolePolicy","AmazonDetectiveFullAccess","AmazonDetectiveInvestigatorAccess","AmazonDetectiveMemberAccess","AmazonDetectiveOrganizationsAccess","AmazonDetectiveServiceLinkedRolePolicy","AmazonDevOpsGuruConsoleFullAccess","AmazonDevOpsGuruFullAccess","AmazonDevOpsGuruOrganizationsAccess","AmazonDevOpsGuruReadOnlyAccess","AmazonDevOpsGuruServiceRolePolicy","AmazonDMSCloudWatchLogsRole","AmazonDMSRedshiftS3Role","AmazonDMSVPCManagementRole","AmazonDocDB-ElasticServiceRolePolicy","AmazonDocDBConsoleFullAccess","AmazonDocDBElasticFullAccess","AmazonDocDBElasticReadOnlyAccess","AmazonDocDBFullAccess","AmazonDocDBReadOnlyAccess","AmazonDRSVPCManagement","AmazonDynamoDBFullAccess","AmazonDynamoDBFullAccesswithDataPipeline","AmazonDynamoDBReadOnlyAccess","AmazonEBSCSIDriverPolicy","AmazonEC2ContainerRegistryFullAccess","AmazonEC2ContainerRegistryPowerUser","AmazonEC2ContainerRegistryReadOnly","AmazonEC2ContainerServiceAutoscaleRole","AmazonEC2ContainerServiceEventsRole","AmazonEC2ContainerServiceforEC2Role","AmazonEC2ContainerServiceRole","AmazonEC2FullAccess","AmazonEC2ReadOnlyAccess","AmazonEC2RoleforAWSCodeDeploy","AmazonEC2RoleforAWSCodeDeployLimited","AmazonEC2RoleforDataPipelineRole","AmazonEC2RoleforSSM","AmazonEC2RolePolicyForLaunchWizard","AmazonEC2SpotFleetAutoscaleRole","AmazonEC2SpotFleetTaggingRole","AmazonECS_FullAccess","AmazonECSInfrastructureRolePolicyForServiceConnectTransportLayerSecurity","AmazonECSInfrastructureRolePolicyForVolumes","AmazonECSServiceRolePolicy","AmazonECSTaskExecutionRolePolicy","AmazonEFSCSIDriverPolicy","AmazonEKS_CNI_Policy","AmazonEKSClusterPolicy","AmazonEKSConnectorServiceRolePolicy","AmazonEKSFargatePodExecutionRolePolicy","AmazonEKSForFargateServiceRolePolicy","AmazonEKSLocalOutpostClusterPolicy","AmazonEKSLocalOutpostServiceRolePolicy","AmazonEKSServicePolicy","AmazonEKSServiceRolePolicy","AmazonEKSVPCResourceController","AmazonEKSWorkerNodePolicy","AmazonElastiCacheFullAccess","AmazonElastiCacheReadOnlyAccess","AmazonElasticContainerRegistryPublicFullAccess","AmazonElasticContainerRegistryPublicPowerUser","AmazonElasticContainerRegistryPublicReadOnly","AmazonElasticFileSystemClientFullAccess","AmazonElasticFileSystemClientReadOnlyAccess","AmazonElasticFileSystemClientReadWriteAccess","AmazonElasticFileSystemFullAccess","AmazonElasticFileSystemReadOnlyAccess","AmazonElasticFileSystemServiceRolePolicy","AmazonElasticFileSystemsUtils","AmazonElasticMapReduceEditorsRole","AmazonElasticMapReduceforAutoScalingRole","AmazonElasticMapReduceforEC2Role","AmazonElasticMapReduceFullAccess","AmazonElasticMapReducePlacementGroupPolicy","AmazonElasticMapReduceReadOnlyAccess","AmazonElasticMapReduceRole","AmazonElasticsearchServiceRolePolicy","AmazonElasticTranscoder_FullAccess","AmazonElasticTranscoder_JobsSubmitter","AmazonElasticTranscoder_ReadOnlyAccess","AmazonElasticTranscoderRole","AmazonEMRCleanupPolicy","AmazonEMRContainersServiceRolePolicy","AmazonEMRFullAccessPolicy_v2","AmazonEMRReadOnlyAccessPolicy_v2","AmazonEMRServerlessServiceRolePolicy","AmazonEMRServicePolicy_v2","AmazonESCognitoAccess","AmazonESFullAccess","AmazonESReadOnlyAccess","AmazonEventBridgeApiDestinationsServiceRolePolicy","AmazonEventBridgeFullAccess","AmazonEventBridgePipesFullAccess","AmazonEventBridgePipesOperatorAccess","AmazonEventBridgePipesReadOnlyAccess","AmazonEventBridgeReadOnlyAccess","AmazonEventBridgeSchedulerFullAccess","AmazonEventBridgeSchedulerReadOnlyAccess","AmazonEventBridgeSchemasFullAccess","AmazonEventBridgeSchemasReadOnlyAccess","AmazonEventBridgeSchemasServiceRolePolicy","AmazonFISServiceRolePolicy","AmazonForecastFullAccess","AmazonFraudDetectorFullAccessPolicy","AmazonFreeRTOSFullAccess","AmazonFreeRTOSOTAUpdate","AmazonFSxConsoleFullAccess","AmazonFSxConsoleReadOnlyAccess","AmazonFSxFullAccess","AmazonFSxReadOnlyAccess","AmazonFSxServiceRolePolicy","AmazonGlacierFullAccess","AmazonGlacierReadOnlyAccess","AmazonGrafanaAthenaAccess","AmazonGrafanaCloudWatchAccess","AmazonGrafanaRedshiftAccess","AmazonGrafanaServiceLinkedRolePolicy","AmazonGuardDutyFullAccess","AmazonGuardDutyMalwareProtectionServiceRolePolicy","AmazonGuardDutyReadOnlyAccess","AmazonGuardDutyServiceRolePolicy","AmazonHealthLakeFullAccess","AmazonHealthLakeReadOnlyAccess","AmazonHoneycodeFullAccess","AmazonHoneycodeReadOnlyAccess","AmazonHoneycodeServiceRolePolicy","AmazonHoneycodeTeamAssociationFullAccess","AmazonHoneycodeTeamAssociationReadOnlyAccess","AmazonHoneycodeWorkbookFullAccess","AmazonHoneycodeWorkbookReadOnlyAccess","AmazonInspector2AgentlessServiceRolePolicy","AmazonInspector2FullAccess","AmazonInspector2ManagedCisPolicy","AmazonInspector2ReadOnlyAccess","AmazonInspector2ServiceRolePolicy","AmazonInspectorFullAccess","AmazonInspectorReadOnlyAccess","AmazonInspectorServiceRolePolicy","AmazonKendraFullAccess","AmazonKendraReadOnlyAccess","AmazonKeyspacesFullAccess","AmazonKeyspacesReadOnlyAccess","AmazonKeyspacesReadOnlyAccess_v2","AmazonKinesisAnalyticsFullAccess","AmazonKinesisAnalyticsReadOnly","AmazonKinesisFirehoseFullAccess","AmazonKinesisFirehoseReadOnlyAccess","AmazonKinesisFullAccess","AmazonKinesisReadOnlyAccess","AmazonKinesisVideoStreamsFullAccess","AmazonKinesisVideoStreamsReadOnlyAccess","AmazonLaunchWizardFullAccessV2","AmazonLexChannelsAccess","AmazonLexFullAccess","AmazonLexReadOnly","AmazonLexReplicationPolicy","AmazonLexRunBotsOnly","AmazonLexV2BotPolicy","AmazonLookoutEquipmentFullAccess","AmazonLookoutEquipmentReadOnlyAccess","AmazonLookoutMetricsFullAccess","AmazonLookoutMetricsReadOnlyAccess","AmazonLookoutVisionConsoleFullAccess","AmazonLookoutVisionConsoleReadOnlyAccess","AmazonLookoutVisionFullAccess","AmazonLookoutVisionReadOnlyAccess","AmazonMachineLearningBatchPredictionsAccess","AmazonMachineLearningCreateOnlyAccess","AmazonMachineLearningFullAccess","AmazonMachineLearningManageRealTimeEndpointOnlyAccess","AmazonMachineLearningReadOnlyAccess","AmazonMachineLearningRealTimePredictionOnlyAccess","AmazonMachineLearningRoleforRedshiftDataSourceV3","AmazonMacieFullAccess","AmazonMacieHandshakeRole","AmazonMacieReadOnlyAccess","AmazonMacieServiceRole","AmazonMacieServiceRolePolicy","AmazonManagedBlockchainConsoleFullAccess","AmazonManagedBlockchainFullAccess","AmazonManagedBlockchainReadOnlyAccess","AmazonManagedBlockchainServiceRolePolicy","AmazonMCSFullAccess","AmazonMCSReadOnlyAccess","AmazonMechanicalTurkFullAccess","AmazonMechanicalTurkReadOnly","AmazonMemoryDBFullAccess","AmazonMemoryDBReadOnlyAccess","AmazonMobileAnalyticsFinancialReportAccess","AmazonMobileAnalyticsFullAccess","AmazonMobileAnalyticsNon-financialReportAccess","AmazonMobileAnalyticsWriteOnlyAccess","AmazonMonitronFullAccess","AmazonMQApiFullAccess","AmazonMQApiReadOnlyAccess","AmazonMQFullAccess","AmazonMQReadOnlyAccess","AmazonMQServiceRolePolicy","AmazonMSKConnectReadOnlyAccess","AmazonMSKFullAccess","AmazonMSKReadOnlyAccess","AmazonMWAAServiceRolePolicy","AmazonNimbleStudio-LaunchProfileWorker","AmazonNimbleStudio-StudioAdmin","AmazonNimbleStudio-StudioUser","AmazonOmicsFullAccess","AmazonOmicsReadOnlyAccess","AmazonOneEnterpriseFullAccess","AmazonOneEnterpriseInstallerAccess","AmazonOneEnterpriseReadOnlyAccess","AmazonOpenSearchDashboardsServiceRolePolicy","AmazonOpenSearchDirectQueryGlueCreateAccess","AmazonOpenSearchIngestionFullAccess","AmazonOpenSearchIngestionReadOnlyAccess","AmazonOpenSearchIngestionServiceRolePolicy","AmazonOpenSearchServerlessServiceRolePolicy","AmazonOpenSearchServiceCognitoAccess","AmazonOpenSearchServiceFullAccess","AmazonOpenSearchServiceReadOnlyAccess","AmazonOpenSearchServiceRolePolicy","AmazonPersonalizeFullAccess","AmazonPollyFullAccess","AmazonPollyReadOnlyAccess","AmazonPrometheusConsoleFullAccess","AmazonPrometheusFullAccess","AmazonPrometheusQueryAccess","AmazonPrometheusRemoteWriteAccess","AmazonPrometheusScraperServiceRolePolicy","AmazonQDeveloperAccess","AmazonQFullAccess","AmazonQLDBConsoleFullAccess","AmazonQLDBFullAccess","AmazonQLDBReadOnly","AmazonRDSBetaServiceRolePolicy","AmazonRDSCustomInstanceProfileRolePolicy","AmazonRDSCustomPreviewServiceRolePolicy","AmazonRDSCustomServiceRolePolicy","AmazonRDSDataFullAccess","AmazonRDSDirectoryServiceAccess","AmazonRDSEnhancedMonitoringRole","AmazonRDSFullAccess","AmazonRDSPerformanceInsightsFullAccess","AmazonRDSPerformanceInsightsReadOnly","AmazonRDSPreviewServiceRolePolicy","AmazonRDSReadOnlyAccess","AmazonRDSServiceRolePolicy","AmazonRedshiftAllCommandsFullAccess","AmazonRedshiftDataFullAccess","AmazonRedshiftFullAccess","AmazonRedshiftQueryEditor","AmazonRedshiftQueryEditorV2FullAccess","AmazonRedshiftQueryEditorV2NoSharing","AmazonRedshiftQueryEditorV2ReadSharing","AmazonRedshiftQueryEditorV2ReadWriteSharing","AmazonRedshiftReadOnlyAccess","AmazonRedshiftServiceLinkedRolePolicy","AmazonRekognitionCustomLabelsFullAccess","AmazonRekognitionFullAccess","AmazonRekognitionReadOnlyAccess","AmazonRekognitionServiceRole","AmazonRoute53AutoNamingFullAccess","AmazonRoute53AutoNamingReadOnlyAccess","AmazonRoute53AutoNamingRegistrantAccess","AmazonRoute53DomainsFullAccess","AmazonRoute53DomainsReadOnlyAccess","AmazonRoute53FullAccess","AmazonRoute53ProfilesFullAccess","AmazonRoute53ProfilesReadOnlyAccess","AmazonRoute53ReadOnlyAccess","AmazonRoute53RecoveryClusterFullAccess","AmazonRoute53RecoveryClusterReadOnlyAccess","AmazonRoute53RecoveryControlConfigFullAccess","AmazonRoute53RecoveryControlConfigReadOnlyAccess","AmazonRoute53RecoveryReadinessFullAccess","AmazonRoute53RecoveryReadinessReadOnlyAccess","AmazonRoute53ResolverFullAccess","AmazonRoute53ResolverReadOnlyAccess","AmazonS3FullAccess","AmazonS3ObjectLambdaExecutionRolePolicy","AmazonS3OutpostsFullAccess","AmazonS3OutpostsReadOnlyAccess","AmazonS3ReadOnlyAccess","AmazonSageMakerAdmin-ServiceCatalogProductsServiceRolePolicy","AmazonSageMakerCanvasAIServicesAccess","AmazonSageMakerCanvasBedrockAccess","AmazonSageMakerCanvasDataPrepFullAccess","AmazonSageMakerCanvasDirectDeployAccess","AmazonSageMakerCanvasEMRServerlessExecutionRolePolicy","AmazonSageMakerCanvasForecastAccess","AmazonSageMakerCanvasFullAccess","AmazonSageMakerClusterInstanceRolePolicy","AmazonSageMakerCoreServiceRolePolicy","AmazonSageMakerEdgeDeviceFleetPolicy","AmazonSageMakerFeatureStoreAccess","AmazonSageMakerFullAccess","AmazonSageMakerGeospatialExecutionRole","AmazonSageMakerGeospatialFullAccess","AmazonSageMakerGroundTruthExecution","AmazonSageMakerMechanicalTurkAccess","AmazonSageMakerModelGovernanceUseAccess","AmazonSageMakerModelRegistryFullAccess","AmazonSageMakerNotebooksServiceRolePolicy","AmazonSageMakerPartnerServiceCatalogProductsApiGatewayServiceRolePolicy","AmazonSageMakerPartnerServiceCatalogProductsCloudFormationServiceRolePolicy","AmazonSageMakerPartnerServiceCatalogProductsLambdaServiceRolePolicy","AmazonSageMakerPipelinesIntegrations","AmazonSageMakerReadOnly","AmazonSageMakerServiceCatalogProductsApiGatewayServiceRolePolicy","AmazonSageMakerServiceCatalogProductsCloudformationServiceRolePolicy","AmazonSageMakerServiceCatalogProductsCodeBuildServiceRolePolicy","AmazonSageMakerServiceCatalogProductsCodePipelineServiceRolePolicy","AmazonSageMakerServiceCatalogProductsEventsServiceRolePolicy","AmazonSageMakerServiceCatalogProductsFirehoseServiceRolePolicy","AmazonSageMakerServiceCatalogProductsGlueServiceRolePolicy","AmazonSageMakerServiceCatalogProductsLambdaServiceRolePolicy","AmazonSecurityLakeAdministrator","AmazonSecurityLakeMetastoreManager","AmazonSecurityLakePermissionsBoundary","AmazonSESFullAccess","AmazonSESReadOnlyAccess","AmazonSESServiceRolePolicy","AmazonSNSFullAccess","AmazonSNSReadOnlyAccess","AmazonSNSRole","AmazonSQSFullAccess","AmazonSQSReadOnlyAccess","AmazonSSMAutomationApproverAccess","AmazonSSMAutomationRole","AmazonSSMDirectoryServiceAccess","AmazonSSMFullAccess","AmazonSSMMaintenanceWindowRole","AmazonSSMManagedEC2InstanceDefaultPolicy","AmazonSSMManagedInstanceCore","AmazonSSMPatchAssociation","AmazonSSMReadOnlyAccess","AmazonSSMServiceRolePolicy","AmazonTextractFullAccess","AmazonTextractServiceRole","AmazonTimestreamConsoleFullAccess","AmazonTimestreamFullAccess","AmazonTimestreamInfluxDBFullAccess","AmazonTimestreamInfluxDBServiceRolePolicy","AmazonTimestreamReadOnlyAccess","AmazonTranscribeFullAccess","AmazonTranscribeReadOnlyAccess","AmazonVPCCrossAccountNetworkInterfaceOperations","AmazonVPCFullAccess","AmazonVPCNetworkAccessAnalyzerFullAccessPolicy","AmazonVPCReachabilityAnalyzerFullAccessPolicy","AmazonVPCReachabilityAnalyzerPathComponentReadPolicy","AmazonVPCReadOnlyAccess","AmazonWorkDocsFullAccess","AmazonWorkDocsReadOnlyAccess","AmazonWorkMailEventsServiceRolePolicy","AmazonWorkMailFullAccess","AmazonWorkMailMessageFlowFullAccess","AmazonWorkMailMessageFlowReadOnlyAccess","AmazonWorkMailReadOnlyAccess","AmazonWorkSpacesAdmin","AmazonWorkSpacesApplicationManagerAdminAccess","AmazonWorkspacesPCAAccess","AmazonWorkSpacesPoolServiceAccess","AmazonWorkSpacesSecureBrowserReadOnly","AmazonWorkSpacesSelfServiceAccess","AmazonWorkSpacesServiceAccess","AmazonWorkSpacesThinClientReadOnlyAccess","AmazonWorkSpacesWebReadOnly","AmazonWorkSpacesWebServiceRolePolicy","AmazonZocaloFullAccess","AmazonZocaloReadOnlyAccess","AmplifyBackendDeployFullAccess","APIGatewayServiceRolePolicy","AppIntegrationsServiceLinkedRolePolicy","ApplicationAutoScalingForAmazonAppStreamAccess","ApplicationDiscoveryServiceContinuousExportServiceRolePolicy","AppRunnerNetworkingServiceRolePolicy","AppRunnerServiceRolePolicy","AppStudioServiceRolePolicy","AutoScalingConsoleFullAccess","AutoScalingConsoleReadOnlyAccess","AutoScalingFullAccess","AutoScalingNotificationAccessRole","AutoScalingReadOnlyAccess","AutoScalingServiceRolePolicy","AWS_ConfigRole","AWSAccountActivityAccess","AWSAccountManagementFullAccess","AWSAccountManagementReadOnlyAccess","AWSAccountUsageReportAccess","AWSAgentlessDiscoveryService","AWSAppFabricFullAccess","AWSAppFabricReadOnlyAccess","AWSAppFabricServiceRolePolicy","AWSApplicationAutoscalingAppStreamFleetPolicy","AWSApplicationAutoscalingCassandraTablePolicy","AWSApplicationAutoscalingComprehendEndpointPolicy","AWSApplicationAutoScalingCustomResourcePolicy","AWSApplicationAutoscalingDynamoDBTablePolicy","AWSApplicationAutoscalingEC2SpotFleetRequestPolicy","AWSApplicationAutoscalingECSServicePolicy","AWSApplicationAutoscalingElastiCacheRGPolicy","AWSApplicationAutoscalingEMRInstanceGroupPolicy","AWSApplicationAutoscalingKafkaClusterPolicy","AWSApplicationAutoscalingLambdaConcurrencyPolicy","AWSApplicationAutoscalingNeptuneClusterPolicy","AWSApplicationAutoscalingRDSClusterPolicy","AWSApplicationAutoscalingSageMakerEndpointPolicy","AWSApplicationAutoscalingWorkSpacesPoolPolicy","AWSApplicationDiscoveryAgentAccess","AWSApplicationDiscoveryAgentlessCollectorAccess","AWSApplicationDiscoveryServiceFullAccess","AWSApplicationMigrationAgentInstallationPolicy","AWSApplicationMigrationAgentPolicy","AWSApplicationMigrationAgentPolicy_v2","AWSApplicationMigrationConversionServerPolicy","AWSApplicationMigrationEC2Access","AWSApplicationMigrationFullAccess","AWSApplicationMigrationMGHAccess","AWSApplicationMigrationReadOnlyAccess","AWSApplicationMigrationReplicationServerPolicy","AWSApplicationMigrationServiceEc2InstancePolicy","AWSApplicationMigrationServiceRolePolicy","AWSApplicationMigrationSSMAccess","AWSApplicationMigrationVCenterClientPolicy","AWSAppMeshEnvoyAccess","AWSAppMeshFullAccess","AWSAppMeshPreviewEnvoyAccess","AWSAppMeshPreviewServiceRolePolicy","AWSAppMeshReadOnly","AWSAppMeshServiceRolePolicy","AWSAppRunnerFullAccess","AWSAppRunnerReadOnlyAccess","AWSAppRunnerServicePolicyForECRAccess","AWSAppSyncAdministrator","AWSAppSyncInvokeFullAccess","AWSAppSyncPushToCloudWatchLogs","AWSAppSyncSchemaAuthor","AWSAppSyncServiceRolePolicy","AWSArtifactAccountSync","AWSArtifactReportsReadOnlyAccess","AWSArtifactServiceRolePolicy","AWSAuditManagerAdministratorAccess","AWSAuditManagerServiceRolePolicy","AWSAutoScalingPlansEC2AutoScalingPolicy","AWSBackupAuditAccess","AWSBackupDataTransferAccess","AWSBackupFullAccess","AWSBackupGatewayServiceRolePolicyForVirtualMachineMetadataSync","AWSBackupOperatorAccess","AWSBackupOrganizationAdminAccess","AWSBackupRestoreAccessForSAPHANA","AWSBackupServiceLinkedRolePolicyForBackup","AWSBackupServiceLinkedRolePolicyForBackupTest","AWSBackupServiceRolePolicyForBackup","AWSBackupServiceRolePolicyForRestores","AWSBackupServiceRolePolicyForS3Backup","AWSBackupServiceRolePolicyForS3Restore","AWSBatchFullAccess","AWSBatchServiceEventTargetRole","AWSBatchServiceRole","AWSBCMDataExportsServiceRolePolicy","AWSBillingConductorFullAccess","AWSBillingConductorReadOnlyAccess","AWSBillingReadOnlyAccess","AWSBudgetsActions_RolePolicyForResourceAdministrationWithSSM","AWSBudgetsActionsWithAWSResourceControlAccess","AWSBudgetsReadOnlyAccess","AWSBugBustFullAccess","AWSBugBustPlayerAccess","AWSBugBustServiceRolePolicy","AWSCertificateManagerFullAccess","AWSCertificateManagerPrivateCAAuditor","AWSCertificateManagerPrivateCAFullAccess","AWSCertificateManagerPrivateCAPrivilegedUser","AWSCertificateManagerPrivateCAReadOnly","AWSCertificateManagerPrivateCAUser","AWSCertificateManagerReadOnly","AWSChatbotServiceLinkedRolePolicy","AWSCleanRoomsFullAccess","AWSCleanRoomsFullAccessNoQuerying","AWSCleanRoomsMLFullAccess","AWSCleanRoomsMLReadOnlyAccess","AWSCleanRoomsReadOnlyAccess","AWSCloud9Administrator","AWSCloud9EnvironmentMember","AWSCloud9ServiceRolePolicy","AWSCloud9SSMInstanceProfile","AWSCloud9User","AWSCloudFormationFullAccess","AWSCloudFormationReadOnlyAccess","AWSCloudFrontLogger","AWSCloudHSMFullAccess","AWSCloudHSMReadOnlyAccess","AWSCloudHSMRole","AWSCloudMapDiscoverInstanceAccess","AWSCloudMapFullAccess","AWSCloudMapReadOnlyAccess","AWSCloudMapRegisterInstanceAccess","AWSCloudShellFullAccess","AWSCloudTrail_FullAccess","AWSCloudTrail_ReadOnlyAccess","AWSCloudWatchAlarms_ActionSSMIncidentsServiceRolePolicy","AWSCodeArtifactAdminAccess","AWSCodeArtifactReadOnlyAccess","AWSCodeBuildAdminAccess","AWSCodeBuildDeveloperAccess","AWSCodeBuildReadOnlyAccess","AWSCodeCommitFullAccess","AWSCodeCommitPowerUser","AWSCodeCommitReadOnly","AWSCodeDeployDeployerAccess","AWSCodeDeployFullAccess","AWSCodeDeployReadOnlyAccess","AWSCodeDeployRole","AWSCodeDeployRoleForCloudFormation","AWSCodeDeployRoleForECS","AWSCodeDeployRoleForECSLimited","AWSCodeDeployRoleForLambda","AWSCodeDeployRoleForLambdaLimited","AWSCodePipeline_FullAccess","AWSCodePipeline_ReadOnlyAccess","AWSCodePipelineApproverAccess","AWSCodePipelineCustomActionAccess","AWSCodeStarFullAccess","AWSCodeStarNotificationsServiceRolePolicy","AWSCodeStarServiceRole","AWSCompromisedKeyQuarantine","AWSCompromisedKeyQuarantineV2","AWSConfigMultiAccountSetupPolicy","AWSConfigRemediationServiceRolePolicy","AWSConfigRoleForOrganizations","AWSConfigRulesExecutionRole","AWSConfigServiceRolePolicy","AWSConfigUserAccess","AWSConnector","AWSControlTowerAccountServiceRolePolicy","AWSControlTowerServiceRolePolicy","AWSCostAndUsageReportAutomationPolicy","AWSDataExchangeFullAccess","AWSDataExchangeProviderFullAccess","AWSDataExchangeReadOnly","AWSDataExchangeSubscriberFullAccess","AWSDataLifecycleManagerServiceRole","AWSDataLifecycleManagerServiceRoleForAMIManagement","AWSDataLifecycleManagerSSMFullAccess","AWSDataPipeline_FullAccess","AWSDataPipeline_PowerUser","AWSDataSyncDiscoveryServiceRolePolicy","AWSDataSyncFullAccess","AWSDataSyncReadOnlyAccess","AWSDeadlineCloud-FleetWorker","AWSDeadlineCloud-UserAccessFarms","AWSDeadlineCloud-UserAccessFleets","AWSDeadlineCloud-UserAccessJobs","AWSDeadlineCloud-UserAccessQueues","AWSDeadlineCloud-WorkerHost","AWSDeepLensLambdaFunctionAccessPolicy","AWSDeepLensServiceRolePolicy","AWSDeepRacerAccountAdminAccess","AWSDeepRacerCloudFormationAccessPolicy","AWSDeepRacerDefaultMultiUserAccess","AWSDeepRacerFullAccess","AWSDeepRacerRoboMakerAccessPolicy","AWSDeepRacerServiceRolePolicy","AWSDenyAll","AWSDeviceFarmFullAccess","AWSDeviceFarmServiceRolePolicy","AWSDeviceFarmTestGridServiceRolePolicy","AWSDirectConnectFullAccess","AWSDirectConnectReadOnlyAccess","AWSDirectConnectServiceRolePolicy","AWSDirectoryServiceFullAccess","AWSDirectoryServiceReadOnlyAccess","AWSDiscoveryContinuousExportFirehosePolicy","AWSDMSFleetAdvisorServiceRolePolicy","AWSDMSServerlessServiceRolePolicy","AWSEC2CapacityReservationFleetRolePolicy","AWSEC2FleetServiceRolePolicy","AWSEC2SpotFleetServiceRolePolicy","AWSEC2SpotServiceRolePolicy","AWSEC2VssSnapshotPolicy","AWSECRPullThroughCache_ServiceRolePolicy","AWSElasticBeanstalkCustomPlatformforEC2Role","AWSElasticBeanstalkEnhancedHealth","AWSElasticBeanstalkMaintenance","AWSElasticBeanstalkManagedUpdatesCustomerRolePolicy","AWSElasticBeanstalkManagedUpdatesServiceRolePolicy","AWSElasticBeanstalkMulticontainerDocker","AWSElasticBeanstalkReadOnly","AWSElasticBeanstalkRoleCore","AWSElasticBeanstalkRoleCWL","AWSElasticBeanstalkRoleECS","AWSElasticBeanstalkRoleRDS","AWSElasticBeanstalkRoleSNS","AWSElasticBeanstalkRoleWorkerTier","AWSElasticBeanstalkService","AWSElasticBeanstalkServiceRolePolicy","AWSElasticBeanstalkWebTier","AWSElasticBeanstalkWorkerTier","AWSElasticDisasterRecoveryAgentInstallationPolicy","AWSElasticDisasterRecoveryAgentPolicy","AWSElasticDisasterRecoveryConsoleFullAccess","AWSElasticDisasterRecoveryConsoleFullAccess_v2","AWSElasticDisasterRecoveryConversionServerPolicy","AWSElasticDisasterRecoveryCrossAccountReplicationPolicy","AWSElasticDisasterRecoveryEc2InstancePolicy","AWSElasticDisasterRecoveryFailbackInstallationPolicy","AWSElasticDisasterRecoveryFailbackPolicy","AWSElasticDisasterRecoveryLaunchActionsPolicy","AWSElasticDisasterRecoveryNetworkReplicationPolicy","AWSElasticDisasterRecoveryReadOnlyAccess","AWSElasticDisasterRecoveryRecoveryInstancePolicy","AWSElasticDisasterRecoveryReplicationServerPolicy","AWSElasticDisasterRecoveryServiceRolePolicy","AWSElasticDisasterRecoveryStagingAccountPolicy","AWSElasticDisasterRecoveryStagingAccountPolicy_v2","AWSElasticLoadBalancingClassicServiceRolePolicy","AWSElasticLoadBalancingServiceRolePolicy","AWSElementalMediaConvertFullAccess","AWSElementalMediaConvertReadOnly","AWSElementalMediaLiveFullAccess","AWSElementalMediaLiveReadOnly","AWSElementalMediaPackageFullAccess","AWSElementalMediaPackageReadOnly","AWSElementalMediaPackageV2FullAccess","AWSElementalMediaPackageV2ReadOnly","AWSElementalMediaStoreFullAccess","AWSElementalMediaStoreReadOnly","AWSElementalMediaTailorFullAccess","AWSElementalMediaTailorReadOnly","AWSEnhancedClassicNetworkingMangementPolicy","AWSEntityResolutionConsoleFullAccess","AWSEntityResolutionConsoleReadOnlyAccess","AWSFaultInjectionSimulatorEC2Access","AWSFaultInjectionSimulatorECSAccess","AWSFaultInjectionSimulatorEKSAccess","AWSFaultInjectionSimulatorNetworkAccess","AWSFaultInjectionSimulatorRDSAccess","AWSFaultInjectionSimulatorSSMAccess","AWSFinSpaceServiceRolePolicy","AWSFMAdminFullAccess","AWSFMAdminReadOnlyAccess","AWSFMMemberReadOnlyAccess","AWSForWordPressPluginPolicy","AWSGitSyncServiceRolePolicy","AWSGlobalAcceleratorSLRPolicy","AWSGlueConsoleFullAccess","AWSGlueConsoleSageMakerNotebookFullAccess","AwsGlueDataBrewFullAccessPolicy","AWSGlueDataBrewServiceRole","AWSGlueSchemaRegistryFullAccess","AWSGlueSchemaRegistryReadonlyAccess","AWSGlueServiceNotebookRole","AWSGlueServiceRole","AwsGlueSessionUserRestrictedNotebookPolicy","AwsGlueSessionUserRestrictedNotebookServiceRole","AwsGlueSessionUserRestrictedPolicy","AwsGlueSessionUserRestrictedServiceRole","AWSGrafanaAccountAdministrator","AWSGrafanaConsoleReadOnlyAccess","AWSGrafanaWorkspacePermissionManagement","AWSGrafanaWorkspacePermissionManagementV2","AWSGreengrassFullAccess","AWSGreengrassReadOnlyAccess","AWSGreengrassResourceAccessRolePolicy","AWSGroundStationAgentInstancePolicy","AWSHealth_EventProcessorServiceRolePolicy","AWSHealthFullAccess","AWSHealthImagingFullAccess","AWSHealthImagingReadOnlyAccess","AWSIAMIdentityCenterAllowListForIdentityContext","AWSIdentitySyncFullAccess","AWSIdentitySyncReadOnlyAccess","AWSImageBuilderFullAccess","AWSImageBuilderReadOnlyAccess","AWSImportExportFullAccess","AWSImportExportReadOnlyAccess","AWSIncidentManagerIncidentAccessServiceRolePolicy","AWSIncidentManagerResolverAccess","AWSIncidentManagerServiceRolePolicy","AWSIoT1ClickFullAccess","AWSIoT1ClickReadOnlyAccess","AWSIoTAnalyticsFullAccess","AWSIoTAnalyticsReadOnlyAccess","AWSIoTConfigAccess","AWSIoTConfigReadOnlyAccess","AWSIoTDataAccess","AWSIoTDeviceDefenderAddThingsToThingGroupMitigationAction","AWSIoTDeviceDefenderAudit","AWSIoTDeviceDefenderEnableIoTLoggingMitigationAction","AWSIoTDeviceDefenderPublishFindingsToSNSMitigationAction","AWSIoTDeviceDefenderReplaceDefaultPolicyMitigationAction","AWSIoTDeviceDefenderUpdateCACertMitigationAction","AWSIoTDeviceDefenderUpdateDeviceCertMitigationAction","AWSIoTDeviceTesterForFreeRTOSFullAccess","AWSIoTDeviceTesterForGreengrassFullAccess","AWSIoTEventsFullAccess","AWSIoTEventsReadOnlyAccess","AWSIoTFleetHubFederationAccess","AWSIoTFleetwiseServiceRolePolicy","AWSIoTFullAccess","AWSIoTLogging","AWSIoTOTAUpdate","AWSIoTRuleActions","AWSIoTSiteWiseConsoleFullAccess","AWSIoTSiteWiseFullAccess","AWSIoTSiteWiseMonitorPortalAccess","AWSIoTSiteWiseMonitorServiceRolePolicy","AWSIoTSiteWiseReadOnlyAccess","AWSIoTThingsRegistration","AWSIoTTwinMakerServiceRolePolicy","AWSIoTWirelessDataAccess","AWSIoTWirelessFullAccess","AWSIoTWirelessFullPublishAccess","AWSIoTWirelessGatewayCertManager","AWSIoTWirelessLogging","AWSIoTWirelessReadOnlyAccess","AWSIPAMServiceRolePolicy","AWSIQContractServiceRolePolicy","AWSIQFullAccess","AWSIQPermissionServiceRolePolicy","AWSKeyManagementServiceCustomKeyStoresServiceRolePolicy","AWSKeyManagementServiceMultiRegionKeysServiceRolePolicy","AWSKeyManagementServicePowerUser","AWSLakeFormationCrossAccountManager","AWSLakeFormationDataAdmin","AWSLambda_FullAccess","AWSLambda_ReadOnlyAccess","AWSLambdaBasicExecutionRole","AWSLambdaDynamoDBExecutionRole","AWSLambdaENIManagementAccess","AWSLambdaExecute","AWSLambdaInvocation-DynamoDB","AWSLambdaKinesisExecutionRole","AWSLambdaMSKExecutionRole","AWSLambdaReplicator","AWSLambdaRole","AWSLambdaSQSQueueExecutionRole","AWSLambdaVPCAccessExecutionRole","AWSLicenseManagerConsumptionPolicy","AWSLicenseManagerLinuxSubscriptionsServiceRolePolicy","AWSLicenseManagerMasterAccountRolePolicy","AWSLicenseManagerMemberAccountRolePolicy","AWSLicenseManagerServiceRolePolicy","AWSLicenseManagerUserSubscriptionsServiceRolePolicy","AWSM2ServicePolicy","AWSManagedServices_ContactsServiceRolePolicy","AWSManagedServices_DetectiveControlsConfig_ServiceRolePolicy","AWSManagedServices_EventsServiceRolePolicy","AWSManagedServicesDeploymentToolkitPolicy","AWSMarketplaceAmiIngestion","AWSMarketplaceDeploymentServiceRolePolicy","AWSMarketplaceFullAccess","AWSMarketplaceGetEntitlements","AWSMarketplaceImageBuildFullAccess","AWSMarketplaceLicenseManagementServiceRolePolicy","AWSMarketplaceManageSubscriptions","AWSMarketplaceMeteringFullAccess","AWSMarketplaceMeteringRegisterUsage","AWSMarketplaceProcurementSystemAdminFullAccess","AWSMarketplacePurchaseOrdersServiceRolePolicy","AWSMarketplaceRead-only","AWSMarketplaceResaleAuthorizationServiceRolePolicy","AWSMarketplaceSellerFullAccess","AWSMarketplaceSellerProductsFullAccess","AWSMarketplaceSellerProductsReadOnly","AWSMediaConnectServicePolicy","AWSMediaTailorServiceRolePolicy","AWSMigrationHubDiscoveryAccess","AWSMigrationHubDMSAccess","AWSMigrationHubFullAccess","AWSMigrationHubOrchestratorConsoleFullAccess","AWSMigrationHubOrchestratorInstanceRolePolicy","AWSMigrationHubOrchestratorPlugin","AWSMigrationHubOrchestratorServiceRolePolicy","AWSMigrationHubRefactorSpaces-EnvironmentsWithoutBridgesFullAccess","AWSMigrationHubRefactorSpaces-SSMAutomationPolicy","AWSMigrationHubRefactorSpacesFullAccess","AWSMigrationHubRefactorSpacesServiceRolePolicy","AWSMigrationHubSMSAccess","AWSMigrationHubStrategyCollector","AWSMigrationHubStrategyConsoleFullAccess","AWSMigrationHubStrategyServiceRolePolicy","AWSMSKReplicatorExecutionRole","AWSNetworkFirewallServiceRolePolicy","AWSNetworkManagerCloudWANServiceRolePolicy","AWSNetworkManagerFullAccess","AWSNetworkManagerReadOnlyAccess","AWSNetworkManagerServiceRolePolicy","AWSOpsWorks_FullAccess","AWSOpsWorksCloudWatchLogs","AWSOpsWorksCMInstanceProfileRole","AWSOpsWorksCMServiceRole","AWSOpsWorksInstanceRegistration","AWSOpsWorksRegisterCLI_EC2","AWSOpsWorksRegisterCLI_OnPremises","AWSOrganizationsFullAccess","AWSOrganizationsReadOnlyAccess","AWSOrganizationsServiceTrustPolicy","AWSOutpostsAuthorizeServerPolicy","AWSOutpostsServiceRolePolicy","AWSPanoramaApplianceRolePolicy","AWSPanoramaApplianceServiceRolePolicy","AWSPanoramaFullAccess","AWSPanoramaGreengrassGroupRolePolicy","AWSPanoramaSageMakerRolePolicy","AWSPanoramaServiceLinkedRolePolicy","AWSPanoramaServiceRolePolicy","AWSPriceListServiceFullAccess","AWSPrivateCAAuditor","AWSPrivateCAFullAccess","AWSPrivateCAPrivilegedUser","AWSPrivateCAReadOnly","AWSPrivateCAUser","AWSPrivateMarketplaceAdminFullAccess","AWSPrivateMarketplaceRequests","AWSPrivateNetworksServiceRolePolicy","AWSProtonCodeBuildProvisioningBasicAccess","AWSProtonCodeBuildProvisioningServiceRolePolicy","AWSProtonDeveloperAccess","AWSProtonFullAccess","AWSProtonReadOnlyAccess","AWSProtonServiceGitSyncServiceRolePolicy","AWSProtonSyncServiceRolePolicy","AWSPurchaseOrdersServiceRolePolicy","AWSQuickSetupCFGCPacksPermissionsBoundary","AWSQuickSetupDeploymentRolePolicy","AWSQuickSetupDevOpsGuruPermissionsBoundary","AWSQuickSetupDistributorPermissionsBoundary","AWSQuickSetupPatchPolicyBaselineAccess","AWSQuickSetupPatchPolicyDeploymentRolePolicy","AWSQuickSetupPatchPolicyPermissionsBoundary","AWSQuickSetupSchedulerPermissionsBoundary","AWSQuickSetupSSMHostMgmtPermissionsBoundary","AWSQuickSightAssetBundleExportPolicy","AWSQuickSightAssetBundleImportPolicy","AWSQuicksightAthenaAccess","AWSQuickSightDescribeRDS","AWSQuickSightDescribeRedshift","AWSQuickSightElasticsearchPolicy","AWSQuickSightIoTAnalyticsAccess","AWSQuickSightListIAM","AWSQuicksightOpenSearchPolicy","AWSQuickSightSageMakerPolicy","AWSQuickSightTimestreamPolicy","AWSReachabilityAnalyzerServiceRolePolicy","AWSRefactoringToolkitFullAccess","AWSRefactoringToolkitSidecarPolicy","AWSrePostPrivateCloudWatchAccess","AWSRepostSpaceSupportOperationsPolicy","AWSResilienceHubAsssessmentExecutionPolicy","AWSResourceAccessManagerFullAccess","AWSResourceAccessManagerReadOnlyAccess","AWSResourceAccessManagerResourceShareParticipantAccess","AWSResourceAccessManagerServiceRolePolicy","AWSResourceExplorerFullAccess","AWSResourceExplorerOrganizationsAccess","AWSResourceExplorerReadOnlyAccess","AWSResourceExplorerServiceRolePolicy","AWSResourceGroupsReadOnlyAccess","AWSRoboMaker_FullAccess","AWSRoboMakerReadOnlyAccess","AWSRoboMakerServicePolicy","AWSRoboMakerServiceRolePolicy","AWSRolesAnywhereServicePolicy","AWSS3OnOutpostsServiceRolePolicy","AWSSavingsPlansFullAccess","AWSSavingsPlansReadOnlyAccess","AWSSecurityHubFullAccess","AWSSecurityHubOrganizationsAccess","AWSSecurityHubReadOnlyAccess","AWSSecurityHubServiceRolePolicy","AWSServiceCatalogAdminFullAccess","AWSServiceCatalogAdminReadOnlyAccess","AWSServiceCatalogAppRegistryFullAccess","AWSServiceCatalogAppRegistryReadOnlyAccess","AWSServiceCatalogAppRegistryServiceRolePolicy","AWSServiceCatalogEndUserFullAccess","AWSServiceCatalogEndUserReadOnlyAccess","AWSServiceCatalogOrgsDataSyncServiceRolePolicy","AWSServiceCatalogSyncServiceRolePolicy","AWSServiceRoleForAmazonEKSNodegroup","AWSServiceRoleForAmazonQDeveloper","AWSServiceRoleForCloudWatchAlarmsActionSSMServiceRolePolicy","AWSServiceRoleForCloudWatchMetrics_DbPerfInsightsServiceRolePolicy","AWSServiceRoleForCodeGuru-Profiler","AWSServiceRoleForCodeWhispererPolicy","AWSServiceRoleForEC2ScheduledInstances","AWSServiceRoleForGroundStationDataflowEndpointGroupPolicy","AWSServiceRoleForImageBuilder","AWSServiceRoleForIoTSiteWise","AWSServiceRoleForLogDeliveryPolicy","AWSServiceRoleForMonitronPolicy","AWSServiceRoleForNeptuneGraphPolicy","AWSServiceRoleForPrivateMarketplaceAdminPolicy","AWSServiceRoleForSMS","AWSServiceRoleForUserSubscriptions","AWSServiceRolePolicyForBackupReports","AWSServiceRolePolicyForBackupRestoreTesting","AWSShieldDRTAccessPolicy","AWSShieldServiceRolePolicy","AWSSSMForSAPServiceLinkedRolePolicy","AWSSSMOpsInsightsServiceRolePolicy","AWSSSODirectoryAdministrator","AWSSSODirectoryReadOnly","AWSSSOMasterAccountAdministrator","AWSSSOMemberAccountAdministrator","AWSSSOReadOnly","AWSSSOServiceRolePolicy","AWSStepFunctionsConsoleFullAccess","AWSStepFunctionsFullAccess","AWSStepFunctionsReadOnlyAccess","AWSStorageGatewayFullAccess","AWSStorageGatewayReadOnlyAccess","AWSStorageGatewayServiceRolePolicy","AWSSupplyChainFederationAdminAccess","AWSSupportAccess","AWSSupportAppFullAccess","AWSSupportAppReadOnlyAccess","AWSSupportPlansFullAccess","AWSSupportPlansReadOnlyAccess","AWSSupportServiceRolePolicy","AWSSystemsManagerAccountDiscoveryServicePolicy","AWSSystemsManagerChangeManagementServicePolicy","AWSSystemsManagerEnableConfigRecordingExecutionPolicy","AWSSystemsManagerEnableExplorerExecutionPolicy","AWSSystemsManagerForSAPFullAccess","AWSSystemsManagerForSAPReadOnlyAccess","AWSSystemsManagerOpsDataSyncServiceRolePolicy","AWSThinkboxAssetServerPolicy","AWSThinkboxAWSPortalAdminPolicy","AWSThinkboxAWSPortalGatewayPolicy","AWSThinkboxAWSPortalWorkerPolicy","AWSThinkboxDeadlineResourceTrackerAccessPolicy","AWSThinkboxDeadlineResourceTrackerAdminPolicy","AWSThinkboxDeadlineSpotEventPluginAdminPolicy","AWSThinkboxDeadlineSpotEventPluginWorkerPolicy","AWSTransferConsoleFullAccess","AWSTransferFullAccess","AWSTransferLoggingAccess","AWSTransferReadOnlyAccess","AWSTrustedAdvisorPriorityFullAccess","AWSTrustedAdvisorPriorityReadOnlyAccess","AWSTrustedAdvisorReportingServiceRolePolicy","AWSTrustedAdvisorServiceRolePolicy","AWSUserNotificationsServiceLinkedRolePolicy","AWSVendorInsightsAssessorFullAccess","AWSVendorInsightsAssessorReadOnly","AWSVendorInsightsVendorFullAccess","AWSVendorInsightsVendorReadOnly","AWSVpcLatticeServiceRolePolicy","AWSVPCS2SVpnServiceRolePolicy","AWSVPCTransitGatewayServiceRolePolicy","AWSVPCVerifiedAccessServiceRolePolicy","AWSWAFConsoleFullAccess","AWSWAFConsoleReadOnlyAccess","AWSWAFFullAccess","AWSWAFReadOnlyAccess","AWSWellArchitectedDiscoveryServiceRolePolicy","AWSWellArchitectedOrganizationsServiceRolePolicy","AWSWickrFullAccess","AWSXrayCrossAccountSharingConfiguration","AWSXRayDaemonWriteAccess","AWSXrayFullAccess","AWSXrayReadOnlyAccess","AWSXrayWriteOnlyAccess","AWSZonalAutoshiftPracticeRunSLRPolicy","BatchServiceRolePolicy","Billing","CertificateManagerServiceRolePolicy","ClientVPNServiceConnectionsRolePolicy","ClientVPNServiceRolePolicy","CloudFormationStackSetsOrgAdminServiceRolePolicy","CloudFormationStackSetsOrgMemberServiceRolePolicy","CloudFrontFullAccess","CloudFrontReadOnlyAccess","CloudHSMServiceRolePolicy","CloudSearchFullAccess","CloudSearchReadOnlyAccess","CloudTrailServiceRolePolicy","CloudWatch-CrossAccountAccess","CloudWatchActionsEC2Access","CloudWatchAgentAdminPolicy","CloudWatchAgentServerPolicy","CloudWatchApplicationInsightsFullAccess","CloudWatchApplicationInsightsReadOnlyAccess","CloudwatchApplicationInsightsServiceLinkedRolePolicy","CloudWatchApplicationSignalsFullAccess","CloudWatchApplicationSignalsReadOnlyAccess","CloudWatchApplicationSignalsServiceRolePolicy","CloudWatchAutomaticDashboardsAccess","CloudWatchCrossAccountSharingConfiguration","CloudWatchEventsBuiltInTargetExecutionAccess","CloudWatchEventsFullAccess","CloudWatchEventsInvocationAccess","CloudWatchEventsReadOnlyAccess","CloudWatchEventsServiceRolePolicy","CloudWatchFullAccess","CloudWatchFullAccessV2","CloudWatchInternetMonitorServiceRolePolicy","CloudWatchLambdaInsightsExecutionRolePolicy","CloudWatchLogsCrossAccountSharingConfiguration","CloudWatchLogsFullAccess","CloudWatchLogsReadOnlyAccess","CloudWatchNetworkMonitorServiceRolePolicy","CloudWatchReadOnlyAccess","CloudWatchSyntheticsFullAccess","CloudWatchSyntheticsReadOnlyAccess","ComprehendDataAccessRolePolicy","ComprehendFullAccess","ComprehendMedicalFullAccess","ComprehendReadOnly","ComputeOptimizerReadOnlyAccess","ComputeOptimizerServiceRolePolicy","ConfigConformsServiceRolePolicy","CostOptimizationHubAdminAccess","CostOptimizationHubReadOnlyAccess","CostOptimizationHubServiceRolePolicy","CustomerProfilesServiceLinkedRolePolicy","DatabaseAdministrator","DataScientist","DAXServiceRolePolicy","DynamoDBCloudWatchContributorInsightsServiceRolePolicy","DynamoDBKinesisReplicationServiceRolePolicy","DynamoDBReplicationServiceRolePolicy","EC2FastLaunchFullAccess","EC2FastLaunchServiceRolePolicy","EC2FleetTimeShiftableServiceRolePolicy","Ec2ImageBuilderCrossAccountDistributionAccess","EC2ImageBuilderLifecycleExecutionPolicy","EC2InstanceConnect","Ec2InstanceConnectEndpoint","EC2InstanceProfileForImageBuilder","EC2InstanceProfileForImageBuilderECRContainerBuilds","ECRReplicationServiceRolePolicy","ECRTemplateServiceRolePolicy","ElastiCacheServiceRolePolicy","ElasticLoadBalancingFullAccess","ElasticLoadBalancingReadOnly","ElementalActivationsDownloadSoftwareAccess","ElementalActivationsFullAccess","ElementalActivationsGenerateLicenses","ElementalActivationsReadOnlyAccess","ElementalAppliancesSoftwareFullAccess","ElementalAppliancesSoftwareReadOnlyAccess","ElementalSupportCenterFullAccess","EMRDescribeClusterPolicyForEMRWAL","FMSServiceRolePolicy","FSxDeleteServiceLinkedRoleAccess","GameLiftGameServerGroupPolicy","GlobalAcceleratorFullAccess","GlobalAcceleratorReadOnlyAccess","GreengrassOTAUpdateArtifactAccess","GroundTruthSyntheticConsoleFullAccess","GroundTruthSyntheticConsoleReadOnlyAccess","Health_OrganizationsServiceRolePolicy","IAMAccessAdvisorReadOnly","IAMAccessAnalyzerFullAccess","IAMAccessAnalyzerReadOnlyAccess","IAMFullAccess","IAMReadOnlyAccess","IAMSelfManageServiceSpecificCredentials","IAMUserChangePassword","IAMUserSSHKeys","IVSFullAccess","IVSReadOnlyAccess","IVSRecordToS3","KafkaConnectServiceRolePolicy","KafkaServiceRolePolicy","KeyspacesReplicationServiceRolePolicy","LakeFormationDataAccessServiceRolePolicy","LexBotPolicy","LexChannelPolicy","LightsailExportAccess","MediaConnectGatewayInstanceRolePolicy","MediaPackageServiceRolePolicy","MemoryDBServiceRolePolicy","MigrationHubDMSAccessServiceRolePolicy","MigrationHubServiceRolePolicy","MigrationHubSMSAccessServiceRolePolicy","MonitronServiceRolePolicy","NeptuneConsoleFullAccess","NeptuneFullAccess","NeptuneGraphReadOnlyAccess","NeptuneReadOnlyAccess","NetworkAdministrator","OAMFullAccess","OAMReadOnlyAccess","OpensearchIngestionSelfManagedVpcePolicy","PartnerCentralAccountManagementUserRoleAssociation","PowerUserAccess","QBusinessServiceRolePolicy","QuickSightAccessForS3StorageManagementAnalyticsReadOnly","RDSCloudHsmAuthorizationRole","ReadOnlyAccess","ResourceGroupsandTagEditorFullAccess","ResourceGroupsandTagEditorReadOnlyAccess","ResourceGroupsServiceRolePolicy","ROSAAmazonEBSCSIDriverOperatorPolicy","ROSACloudNetworkConfigOperatorPolicy","ROSAControlPlaneOperatorPolicy","ROSAImageRegistryOperatorPolicy","ROSAIngressOperatorPolicy","ROSAInstallerPolicy","ROSAKMSProviderPolicy","ROSAKubeControllerPolicy","ROSAManageSubscription","ROSANodePoolManagementPolicy","ROSASRESupportPolicy","ROSAWorkerInstancePolicy","Route53RecoveryReadinessServiceRolePolicy","Route53ResolverServiceRolePolicy","S3StorageLensServiceRolePolicy","SecretsManagerReadWrite","SecurityAudit","SecurityLakeServiceLinkedRole","ServerMigration_ServiceRole","ServerMigrationConnector","ServerMigrationServiceConsoleFullAccess","ServerMigrationServiceLaunchRole","ServerMigrationServiceRoleForInstanceValidation","ServiceQuotasFullAccess","ServiceQuotasReadOnlyAccess","ServiceQuotasServiceRolePolicy","SimpleWorkflowFullAccess","SplitCostAllocationDataServiceRolePolicy","SSMQuickSetupRolePolicy","SupportUser","SystemAdministrator","TranslateFullAccess","TranslateReadOnly","ViewOnlyAccess","VMImportExportRoleForAWSConnector","VPCLatticeFullAccess","VPCLatticeReadOnlyAccess","VPCLatticeServicesInvokeAccess","WAFLoggingServiceRolePolicy","WAFRegionalLoggingServiceRolePolicy","WAFV2LoggingServiceRolePolicy","WellArchitectedConsoleFullAccess","WellArchitectedConsoleReadOnlyAccess","WorkLinkServiceRolePolicy"] \ No newline at end of file +["AccessAnalyzerServiceRolePolicy","AdministratorAccess","AdministratorAccess-Amplify","AdministratorAccess-AWSElasticBeanstalk","AlexaForBusinessDeviceSetup","AlexaForBusinessFullAccess","AlexaForBusinessGatewayExecution","AlexaForBusinessLifesizeDelegatedAccessPolicy","AlexaForBusinessNetworkProfileServicePolicy","AlexaForBusinessPolyDelegatedAccessPolicy","AlexaForBusinessReadOnlyAccess","AmazonAPIGatewayAdministrator","AmazonAPIGatewayInvokeFullAccess","AmazonAPIGatewayPushToCloudWatchLogs","AmazonAppFlowFullAccess","AmazonAppFlowReadOnlyAccess","AmazonAppStreamFullAccess","AmazonAppStreamPCAAccess","AmazonAppStreamReadOnlyAccess","AmazonAppStreamServiceAccess","AmazonAthenaFullAccess","AmazonAugmentedAIFullAccess","AmazonAugmentedAIHumanLoopFullAccess","AmazonAugmentedAIIntegratedAPIAccess","AmazonBedrockFullAccess","AmazonBedrockReadOnly","AmazonBedrockStudioPermissionsBoundary","AmazonBraketFullAccess","AmazonBraketJobsExecutionPolicy","AmazonBraketServiceRolePolicy","AmazonChimeFullAccess","AmazonChimeReadOnly","AmazonChimeSDK","AmazonChimeSDKMediaPipelinesServiceLinkedRolePolicy","AmazonChimeSDKMessagingServiceRolePolicy","AmazonChimeServiceRolePolicy","AmazonChimeTranscriptionServiceLinkedRolePolicy","AmazonChimeUserManagement","AmazonChimeVoiceConnectorServiceLinkedRolePolicy","AmazonCloudDirectoryFullAccess","AmazonCloudDirectoryReadOnlyAccess","AmazonCloudWatchEvidentlyFullAccess","AmazonCloudWatchEvidentlyReadOnlyAccess","AmazonCloudWatchEvidentlyServiceRolePolicy","AmazonCloudWatchRUMFullAccess","AmazonCloudWatchRUMReadOnlyAccess","AmazonCloudWatchRUMServiceRolePolicy","AmazonCodeCatalystFullAccess","AmazonCodeCatalystReadOnlyAccess","AmazonCodeCatalystSupportAccess","AmazonCodeGuruProfilerAgentAccess","AmazonCodeGuruProfilerFullAccess","AmazonCodeGuruProfilerReadOnlyAccess","AmazonCodeGuruReviewerFullAccess","AmazonCodeGuruReviewerReadOnlyAccess","AmazonCodeGuruReviewerServiceRolePolicy","AmazonCodeGuruSecurityFullAccess","AmazonCodeGuruSecurityScanAccess","AmazonCognitoDeveloperAuthenticatedIdentities","AmazonCognitoIdpEmailServiceRolePolicy","AmazonCognitoIdpServiceRolePolicy","AmazonCognitoPowerUser","AmazonCognitoReadOnly","AmazonCognitoUnAuthedIdentitiesSessionPolicy","AmazonCognitoUnauthenticatedIdentities","AmazonConnect_FullAccess","AmazonConnectCampaignsServiceLinkedRolePolicy","AmazonConnectReadOnlyAccess","AmazonConnectServiceLinkedRolePolicy","AmazonConnectSynchronizationServiceRolePolicy","AmazonConnectVoiceIDFullAccess","AmazonDataZoneDomainExecutionRolePolicy","AmazonDataZoneEnvironmentRolePermissionsBoundary","AmazonDataZoneFullAccess","AmazonDataZoneFullUserAccess","AmazonDataZoneGlueManageAccessRolePolicy","AmazonDataZoneRedshiftGlueProvisioningPolicy","AmazonDataZoneRedshiftManageAccessRolePolicy","AmazonDataZoneSageMakerEnvironmentRolePermissionsBoundary","AmazonDataZoneSageMakerManageAccessRolePolicy","AmazonDataZoneSageMakerProvisioningRolePolicy","AmazonDetectiveFullAccess","AmazonDetectiveInvestigatorAccess","AmazonDetectiveMemberAccess","AmazonDetectiveOrganizationsAccess","AmazonDetectiveServiceLinkedRolePolicy","AmazonDevOpsGuruConsoleFullAccess","AmazonDevOpsGuruFullAccess","AmazonDevOpsGuruOrganizationsAccess","AmazonDevOpsGuruReadOnlyAccess","AmazonDevOpsGuruServiceRolePolicy","AmazonDMSCloudWatchLogsRole","AmazonDMSRedshiftS3Role","AmazonDMSVPCManagementRole","AmazonDocDB-ElasticServiceRolePolicy","AmazonDocDBConsoleFullAccess","AmazonDocDBElasticFullAccess","AmazonDocDBElasticReadOnlyAccess","AmazonDocDBFullAccess","AmazonDocDBReadOnlyAccess","AmazonDRSVPCManagement","AmazonDynamoDBFullAccess","AmazonDynamoDBFullAccesswithDataPipeline","AmazonDynamoDBReadOnlyAccess","AmazonEBSCSIDriverPolicy","AmazonEC2ContainerRegistryFullAccess","AmazonEC2ContainerRegistryPowerUser","AmazonEC2ContainerRegistryReadOnly","AmazonEC2ContainerServiceAutoscaleRole","AmazonEC2ContainerServiceEventsRole","AmazonEC2ContainerServiceforEC2Role","AmazonEC2ContainerServiceRole","AmazonEC2FullAccess","AmazonEC2ReadOnlyAccess","AmazonEC2RoleforAWSCodeDeploy","AmazonEC2RoleforAWSCodeDeployLimited","AmazonEC2RoleforDataPipelineRole","AmazonEC2RoleforSSM","AmazonEC2RolePolicyForLaunchWizard","AmazonEC2SpotFleetAutoscaleRole","AmazonEC2SpotFleetTaggingRole","AmazonECS_FullAccess","AmazonECSInfrastructureRolePolicyForServiceConnectTransportLayerSecurity","AmazonECSInfrastructureRolePolicyForVolumes","AmazonECSServiceRolePolicy","AmazonECSTaskExecutionRolePolicy","AmazonEFSCSIDriverPolicy","AmazonEKS_CNI_Policy","AmazonEKSClusterPolicy","AmazonEKSConnectorServiceRolePolicy","AmazonEKSFargatePodExecutionRolePolicy","AmazonEKSForFargateServiceRolePolicy","AmazonEKSLocalOutpostClusterPolicy","AmazonEKSLocalOutpostServiceRolePolicy","AmazonEKSServicePolicy","AmazonEKSServiceRolePolicy","AmazonEKSVPCResourceController","AmazonEKSWorkerNodePolicy","AmazonElastiCacheFullAccess","AmazonElastiCacheReadOnlyAccess","AmazonElasticContainerRegistryPublicFullAccess","AmazonElasticContainerRegistryPublicPowerUser","AmazonElasticContainerRegistryPublicReadOnly","AmazonElasticFileSystemClientFullAccess","AmazonElasticFileSystemClientReadOnlyAccess","AmazonElasticFileSystemClientReadWriteAccess","AmazonElasticFileSystemFullAccess","AmazonElasticFileSystemReadOnlyAccess","AmazonElasticFileSystemServiceRolePolicy","AmazonElasticFileSystemsUtils","AmazonElasticMapReduceEditorsRole","AmazonElasticMapReduceforAutoScalingRole","AmazonElasticMapReduceforEC2Role","AmazonElasticMapReduceFullAccess","AmazonElasticMapReducePlacementGroupPolicy","AmazonElasticMapReduceReadOnlyAccess","AmazonElasticMapReduceRole","AmazonElasticsearchServiceRolePolicy","AmazonElasticTranscoder_FullAccess","AmazonElasticTranscoder_JobsSubmitter","AmazonElasticTranscoder_ReadOnlyAccess","AmazonElasticTranscoderRole","AmazonEMRCleanupPolicy","AmazonEMRContainersServiceRolePolicy","AmazonEMRFullAccessPolicy_v2","AmazonEMRReadOnlyAccessPolicy_v2","AmazonEMRServerlessServiceRolePolicy","AmazonEMRServicePolicy_v2","AmazonESCognitoAccess","AmazonESFullAccess","AmazonESReadOnlyAccess","AmazonEventBridgeApiDestinationsServiceRolePolicy","AmazonEventBridgeFullAccess","AmazonEventBridgePipesFullAccess","AmazonEventBridgePipesOperatorAccess","AmazonEventBridgePipesReadOnlyAccess","AmazonEventBridgeReadOnlyAccess","AmazonEventBridgeSchedulerFullAccess","AmazonEventBridgeSchedulerReadOnlyAccess","AmazonEventBridgeSchemasFullAccess","AmazonEventBridgeSchemasReadOnlyAccess","AmazonEventBridgeSchemasServiceRolePolicy","AmazonFISServiceRolePolicy","AmazonForecastFullAccess","AmazonFraudDetectorFullAccessPolicy","AmazonFreeRTOSFullAccess","AmazonFreeRTOSOTAUpdate","AmazonFSxConsoleFullAccess","AmazonFSxConsoleReadOnlyAccess","AmazonFSxFullAccess","AmazonFSxReadOnlyAccess","AmazonFSxServiceRolePolicy","AmazonGlacierFullAccess","AmazonGlacierReadOnlyAccess","AmazonGrafanaAthenaAccess","AmazonGrafanaCloudWatchAccess","AmazonGrafanaRedshiftAccess","AmazonGrafanaServiceLinkedRolePolicy","AmazonGuardDutyFullAccess","AmazonGuardDutyMalwareProtectionServiceRolePolicy","AmazonGuardDutyReadOnlyAccess","AmazonGuardDutyServiceRolePolicy","AmazonHealthLakeFullAccess","AmazonHealthLakeReadOnlyAccess","AmazonHoneycodeFullAccess","AmazonHoneycodeReadOnlyAccess","AmazonHoneycodeServiceRolePolicy","AmazonHoneycodeTeamAssociationFullAccess","AmazonHoneycodeTeamAssociationReadOnlyAccess","AmazonHoneycodeWorkbookFullAccess","AmazonHoneycodeWorkbookReadOnlyAccess","AmazonInspector2AgentlessServiceRolePolicy","AmazonInspector2FullAccess","AmazonInspector2ManagedCisPolicy","AmazonInspector2ReadOnlyAccess","AmazonInspector2ServiceRolePolicy","AmazonInspectorFullAccess","AmazonInspectorReadOnlyAccess","AmazonInspectorServiceRolePolicy","AmazonKendraFullAccess","AmazonKendraReadOnlyAccess","AmazonKeyspacesFullAccess","AmazonKeyspacesReadOnlyAccess","AmazonKeyspacesReadOnlyAccess_v2","AmazonKinesisAnalyticsFullAccess","AmazonKinesisAnalyticsReadOnly","AmazonKinesisFirehoseFullAccess","AmazonKinesisFirehoseReadOnlyAccess","AmazonKinesisFullAccess","AmazonKinesisReadOnlyAccess","AmazonKinesisVideoStreamsFullAccess","AmazonKinesisVideoStreamsReadOnlyAccess","AmazonLaunchWizardFullAccessV2","AmazonLexChannelsAccess","AmazonLexFullAccess","AmazonLexReadOnly","AmazonLexReplicationPolicy","AmazonLexRunBotsOnly","AmazonLexV2BotPolicy","AmazonLookoutEquipmentFullAccess","AmazonLookoutEquipmentReadOnlyAccess","AmazonLookoutMetricsFullAccess","AmazonLookoutMetricsReadOnlyAccess","AmazonLookoutVisionConsoleFullAccess","AmazonLookoutVisionConsoleReadOnlyAccess","AmazonLookoutVisionFullAccess","AmazonLookoutVisionReadOnlyAccess","AmazonMachineLearningBatchPredictionsAccess","AmazonMachineLearningCreateOnlyAccess","AmazonMachineLearningFullAccess","AmazonMachineLearningManageRealTimeEndpointOnlyAccess","AmazonMachineLearningReadOnlyAccess","AmazonMachineLearningRealTimePredictionOnlyAccess","AmazonMachineLearningRoleforRedshiftDataSourceV3","AmazonMacieFullAccess","AmazonMacieHandshakeRole","AmazonMacieReadOnlyAccess","AmazonMacieServiceRole","AmazonMacieServiceRolePolicy","AmazonManagedBlockchainConsoleFullAccess","AmazonManagedBlockchainFullAccess","AmazonManagedBlockchainReadOnlyAccess","AmazonManagedBlockchainServiceRolePolicy","AmazonMCSFullAccess","AmazonMCSReadOnlyAccess","AmazonMechanicalTurkFullAccess","AmazonMechanicalTurkReadOnly","AmazonMemoryDBFullAccess","AmazonMemoryDBReadOnlyAccess","AmazonMobileAnalyticsFinancialReportAccess","AmazonMobileAnalyticsFullAccess","AmazonMobileAnalyticsNon-financialReportAccess","AmazonMobileAnalyticsWriteOnlyAccess","AmazonMonitronFullAccess","AmazonMQApiFullAccess","AmazonMQApiReadOnlyAccess","AmazonMQFullAccess","AmazonMQReadOnlyAccess","AmazonMQServiceRolePolicy","AmazonMSKConnectReadOnlyAccess","AmazonMSKFullAccess","AmazonMSKReadOnlyAccess","AmazonMWAAServiceRolePolicy","AmazonNimbleStudio-LaunchProfileWorker","AmazonNimbleStudio-StudioAdmin","AmazonNimbleStudio-StudioUser","AmazonOmicsFullAccess","AmazonOmicsReadOnlyAccess","AmazonOneEnterpriseFullAccess","AmazonOneEnterpriseInstallerAccess","AmazonOneEnterpriseReadOnlyAccess","AmazonOpenSearchDashboardsServiceRolePolicy","AmazonOpenSearchDirectQueryGlueCreateAccess","AmazonOpenSearchIngestionFullAccess","AmazonOpenSearchIngestionReadOnlyAccess","AmazonOpenSearchIngestionServiceRolePolicy","AmazonOpenSearchServerlessServiceRolePolicy","AmazonOpenSearchServiceCognitoAccess","AmazonOpenSearchServiceFullAccess","AmazonOpenSearchServiceReadOnlyAccess","AmazonOpenSearchServiceRolePolicy","AmazonPersonalizeFullAccess","AmazonPollyFullAccess","AmazonPollyReadOnlyAccess","AmazonPrometheusConsoleFullAccess","AmazonPrometheusFullAccess","AmazonPrometheusQueryAccess","AmazonPrometheusRemoteWriteAccess","AmazonPrometheusScraperServiceRolePolicy","AmazonQDeveloperAccess","AmazonQFullAccess","AmazonQLDBConsoleFullAccess","AmazonQLDBFullAccess","AmazonQLDBReadOnly","AmazonRDSBetaServiceRolePolicy","AmazonRDSCustomInstanceProfileRolePolicy","AmazonRDSCustomPreviewServiceRolePolicy","AmazonRDSCustomServiceRolePolicy","AmazonRDSDataFullAccess","AmazonRDSDirectoryServiceAccess","AmazonRDSEnhancedMonitoringRole","AmazonRDSFullAccess","AmazonRDSPerformanceInsightsFullAccess","AmazonRDSPerformanceInsightsReadOnly","AmazonRDSPreviewServiceRolePolicy","AmazonRDSReadOnlyAccess","AmazonRDSServiceRolePolicy","AmazonRedshiftAllCommandsFullAccess","AmazonRedshiftDataFullAccess","AmazonRedshiftFullAccess","AmazonRedshiftQueryEditor","AmazonRedshiftQueryEditorV2FullAccess","AmazonRedshiftQueryEditorV2NoSharing","AmazonRedshiftQueryEditorV2ReadSharing","AmazonRedshiftQueryEditorV2ReadWriteSharing","AmazonRedshiftReadOnlyAccess","AmazonRedshiftServiceLinkedRolePolicy","AmazonRekognitionCustomLabelsFullAccess","AmazonRekognitionFullAccess","AmazonRekognitionReadOnlyAccess","AmazonRekognitionServiceRole","AmazonRoute53AutoNamingFullAccess","AmazonRoute53AutoNamingReadOnlyAccess","AmazonRoute53AutoNamingRegistrantAccess","AmazonRoute53DomainsFullAccess","AmazonRoute53DomainsReadOnlyAccess","AmazonRoute53FullAccess","AmazonRoute53ProfilesFullAccess","AmazonRoute53ProfilesReadOnlyAccess","AmazonRoute53ReadOnlyAccess","AmazonRoute53RecoveryClusterFullAccess","AmazonRoute53RecoveryClusterReadOnlyAccess","AmazonRoute53RecoveryControlConfigFullAccess","AmazonRoute53RecoveryControlConfigReadOnlyAccess","AmazonRoute53RecoveryReadinessFullAccess","AmazonRoute53RecoveryReadinessReadOnlyAccess","AmazonRoute53ResolverFullAccess","AmazonRoute53ResolverReadOnlyAccess","AmazonS3FullAccess","AmazonS3ObjectLambdaExecutionRolePolicy","AmazonS3OutpostsFullAccess","AmazonS3OutpostsReadOnlyAccess","AmazonS3ReadOnlyAccess","AmazonSageMakerAdmin-ServiceCatalogProductsServiceRolePolicy","AmazonSageMakerCanvasAIServicesAccess","AmazonSageMakerCanvasBedrockAccess","AmazonSageMakerCanvasDataPrepFullAccess","AmazonSageMakerCanvasDirectDeployAccess","AmazonSageMakerCanvasEMRServerlessExecutionRolePolicy","AmazonSageMakerCanvasForecastAccess","AmazonSageMakerCanvasFullAccess","AmazonSageMakerClusterInstanceRolePolicy","AmazonSageMakerCoreServiceRolePolicy","AmazonSageMakerEdgeDeviceFleetPolicy","AmazonSageMakerFeatureStoreAccess","AmazonSageMakerFullAccess","AmazonSageMakerGeospatialExecutionRole","AmazonSageMakerGeospatialFullAccess","AmazonSageMakerGroundTruthExecution","AmazonSageMakerMechanicalTurkAccess","AmazonSageMakerModelGovernanceUseAccess","AmazonSageMakerModelRegistryFullAccess","AmazonSageMakerNotebooksServiceRolePolicy","AmazonSageMakerPartnerServiceCatalogProductsApiGatewayServiceRolePolicy","AmazonSageMakerPartnerServiceCatalogProductsCloudFormationServiceRolePolicy","AmazonSageMakerPartnerServiceCatalogProductsLambdaServiceRolePolicy","AmazonSageMakerPipelinesIntegrations","AmazonSageMakerReadOnly","AmazonSageMakerServiceCatalogProductsApiGatewayServiceRolePolicy","AmazonSageMakerServiceCatalogProductsCloudformationServiceRolePolicy","AmazonSageMakerServiceCatalogProductsCodeBuildServiceRolePolicy","AmazonSageMakerServiceCatalogProductsCodePipelineServiceRolePolicy","AmazonSageMakerServiceCatalogProductsEventsServiceRolePolicy","AmazonSageMakerServiceCatalogProductsFirehoseServiceRolePolicy","AmazonSageMakerServiceCatalogProductsGlueServiceRolePolicy","AmazonSageMakerServiceCatalogProductsLambdaServiceRolePolicy","AmazonSecurityLakeAdministrator","AmazonSecurityLakeMetastoreManager","AmazonSecurityLakePermissionsBoundary","AmazonSESFullAccess","AmazonSESReadOnlyAccess","AmazonSESServiceRolePolicy","AmazonSNSFullAccess","AmazonSNSReadOnlyAccess","AmazonSNSRole","AmazonSQSFullAccess","AmazonSQSReadOnlyAccess","AmazonSSMAutomationApproverAccess","AmazonSSMAutomationRole","AmazonSSMDirectoryServiceAccess","AmazonSSMFullAccess","AmazonSSMMaintenanceWindowRole","AmazonSSMManagedEC2InstanceDefaultPolicy","AmazonSSMManagedInstanceCore","AmazonSSMPatchAssociation","AmazonSSMReadOnlyAccess","AmazonSSMServiceRolePolicy","AmazonTextractFullAccess","AmazonTextractServiceRole","AmazonTimestreamConsoleFullAccess","AmazonTimestreamFullAccess","AmazonTimestreamInfluxDBFullAccess","AmazonTimestreamInfluxDBServiceRolePolicy","AmazonTimestreamReadOnlyAccess","AmazonTranscribeFullAccess","AmazonTranscribeReadOnlyAccess","AmazonVPCCrossAccountNetworkInterfaceOperations","AmazonVPCFullAccess","AmazonVPCNetworkAccessAnalyzerFullAccessPolicy","AmazonVPCReachabilityAnalyzerFullAccessPolicy","AmazonVPCReachabilityAnalyzerPathComponentReadPolicy","AmazonVPCReadOnlyAccess","AmazonWorkDocsFullAccess","AmazonWorkDocsReadOnlyAccess","AmazonWorkMailEventsServiceRolePolicy","AmazonWorkMailFullAccess","AmazonWorkMailMessageFlowFullAccess","AmazonWorkMailMessageFlowReadOnlyAccess","AmazonWorkMailReadOnlyAccess","AmazonWorkSpacesAdmin","AmazonWorkSpacesApplicationManagerAdminAccess","AmazonWorkspacesPCAAccess","AmazonWorkSpacesPoolServiceAccess","AmazonWorkSpacesSecureBrowserReadOnly","AmazonWorkSpacesSelfServiceAccess","AmazonWorkSpacesServiceAccess","AmazonWorkSpacesThinClientFullAccess","AmazonWorkSpacesThinClientReadOnlyAccess","AmazonWorkSpacesWebReadOnly","AmazonWorkSpacesWebServiceRolePolicy","AmazonZocaloFullAccess","AmazonZocaloReadOnlyAccess","AmplifyBackendDeployFullAccess","APIGatewayServiceRolePolicy","AppIntegrationsServiceLinkedRolePolicy","ApplicationAutoScalingForAmazonAppStreamAccess","ApplicationDiscoveryServiceContinuousExportServiceRolePolicy","AppRunnerNetworkingServiceRolePolicy","AppRunnerServiceRolePolicy","AppStudioServiceRolePolicy","AutoScalingConsoleFullAccess","AutoScalingConsoleReadOnlyAccess","AutoScalingFullAccess","AutoScalingNotificationAccessRole","AutoScalingReadOnlyAccess","AutoScalingServiceRolePolicy","AWS_ConfigRole","AWSAccountActivityAccess","AWSAccountManagementFullAccess","AWSAccountManagementReadOnlyAccess","AWSAccountUsageReportAccess","AWSAgentlessDiscoveryService","AWSAppFabricFullAccess","AWSAppFabricReadOnlyAccess","AWSAppFabricServiceRolePolicy","AWSApplicationAutoscalingAppStreamFleetPolicy","AWSApplicationAutoscalingCassandraTablePolicy","AWSApplicationAutoscalingComprehendEndpointPolicy","AWSApplicationAutoScalingCustomResourcePolicy","AWSApplicationAutoscalingDynamoDBTablePolicy","AWSApplicationAutoscalingEC2SpotFleetRequestPolicy","AWSApplicationAutoscalingECSServicePolicy","AWSApplicationAutoscalingElastiCacheRGPolicy","AWSApplicationAutoscalingEMRInstanceGroupPolicy","AWSApplicationAutoscalingKafkaClusterPolicy","AWSApplicationAutoscalingLambdaConcurrencyPolicy","AWSApplicationAutoscalingNeptuneClusterPolicy","AWSApplicationAutoscalingRDSClusterPolicy","AWSApplicationAutoscalingSageMakerEndpointPolicy","AWSApplicationAutoscalingWorkSpacesPoolPolicy","AWSApplicationDiscoveryAgentAccess","AWSApplicationDiscoveryAgentlessCollectorAccess","AWSApplicationDiscoveryServiceFullAccess","AWSApplicationMigrationAgentInstallationPolicy","AWSApplicationMigrationAgentPolicy","AWSApplicationMigrationAgentPolicy_v2","AWSApplicationMigrationConversionServerPolicy","AWSApplicationMigrationEC2Access","AWSApplicationMigrationFullAccess","AWSApplicationMigrationMGHAccess","AWSApplicationMigrationReadOnlyAccess","AWSApplicationMigrationReplicationServerPolicy","AWSApplicationMigrationServiceEc2InstancePolicy","AWSApplicationMigrationServiceRolePolicy","AWSApplicationMigrationSSMAccess","AWSApplicationMigrationVCenterClientPolicy","AWSAppMeshEnvoyAccess","AWSAppMeshFullAccess","AWSAppMeshPreviewEnvoyAccess","AWSAppMeshPreviewServiceRolePolicy","AWSAppMeshReadOnly","AWSAppMeshServiceRolePolicy","AWSAppRunnerFullAccess","AWSAppRunnerReadOnlyAccess","AWSAppRunnerServicePolicyForECRAccess","AWSAppSyncAdministrator","AWSAppSyncInvokeFullAccess","AWSAppSyncPushToCloudWatchLogs","AWSAppSyncSchemaAuthor","AWSAppSyncServiceRolePolicy","AWSArtifactAccountSync","AWSArtifactReportsReadOnlyAccess","AWSArtifactServiceRolePolicy","AWSAuditManagerAdministratorAccess","AWSAuditManagerServiceRolePolicy","AWSAutoScalingPlansEC2AutoScalingPolicy","AWSBackupAuditAccess","AWSBackupDataTransferAccess","AWSBackupFullAccess","AWSBackupGatewayServiceRolePolicyForVirtualMachineMetadataSync","AWSBackupOperatorAccess","AWSBackupOrganizationAdminAccess","AWSBackupRestoreAccessForSAPHANA","AWSBackupServiceLinkedRolePolicyForBackup","AWSBackupServiceLinkedRolePolicyForBackupTest","AWSBackupServiceRolePolicyForBackup","AWSBackupServiceRolePolicyForRestores","AWSBackupServiceRolePolicyForS3Backup","AWSBackupServiceRolePolicyForS3Restore","AWSBatchFullAccess","AWSBatchServiceEventTargetRole","AWSBatchServiceRole","AWSBCMDataExportsServiceRolePolicy","AWSBillingConductorFullAccess","AWSBillingConductorReadOnlyAccess","AWSBillingReadOnlyAccess","AWSBudgetsActions_RolePolicyForResourceAdministrationWithSSM","AWSBudgetsActionsWithAWSResourceControlAccess","AWSBudgetsReadOnlyAccess","AWSBugBustFullAccess","AWSBugBustPlayerAccess","AWSBugBustServiceRolePolicy","AWSCertificateManagerFullAccess","AWSCertificateManagerPrivateCAAuditor","AWSCertificateManagerPrivateCAFullAccess","AWSCertificateManagerPrivateCAPrivilegedUser","AWSCertificateManagerPrivateCAReadOnly","AWSCertificateManagerPrivateCAUser","AWSCertificateManagerReadOnly","AWSChatbotServiceLinkedRolePolicy","AWSCleanRoomsFullAccess","AWSCleanRoomsFullAccessNoQuerying","AWSCleanRoomsMLFullAccess","AWSCleanRoomsMLReadOnlyAccess","AWSCleanRoomsReadOnlyAccess","AWSCloud9Administrator","AWSCloud9EnvironmentMember","AWSCloud9ServiceRolePolicy","AWSCloud9SSMInstanceProfile","AWSCloud9User","AWSCloudFormationFullAccess","AWSCloudFormationReadOnlyAccess","AWSCloudFrontLogger","AWSCloudHSMFullAccess","AWSCloudHSMReadOnlyAccess","AWSCloudHSMRole","AWSCloudMapDiscoverInstanceAccess","AWSCloudMapFullAccess","AWSCloudMapReadOnlyAccess","AWSCloudMapRegisterInstanceAccess","AWSCloudShellFullAccess","AWSCloudTrail_FullAccess","AWSCloudTrail_ReadOnlyAccess","AWSCloudWatchAlarms_ActionSSMIncidentsServiceRolePolicy","AWSCodeArtifactAdminAccess","AWSCodeArtifactReadOnlyAccess","AWSCodeBuildAdminAccess","AWSCodeBuildDeveloperAccess","AWSCodeBuildReadOnlyAccess","AWSCodeCommitFullAccess","AWSCodeCommitPowerUser","AWSCodeCommitReadOnly","AWSCodeDeployDeployerAccess","AWSCodeDeployFullAccess","AWSCodeDeployReadOnlyAccess","AWSCodeDeployRole","AWSCodeDeployRoleForCloudFormation","AWSCodeDeployRoleForECS","AWSCodeDeployRoleForECSLimited","AWSCodeDeployRoleForLambda","AWSCodeDeployRoleForLambdaLimited","AWSCodePipeline_FullAccess","AWSCodePipeline_ReadOnlyAccess","AWSCodePipelineApproverAccess","AWSCodePipelineCustomActionAccess","AWSCodeStarFullAccess","AWSCodeStarNotificationsServiceRolePolicy","AWSCodeStarServiceRole","AWSCompromisedKeyQuarantine","AWSCompromisedKeyQuarantineV2","AWSConfigMultiAccountSetupPolicy","AWSConfigRemediationServiceRolePolicy","AWSConfigRoleForOrganizations","AWSConfigRulesExecutionRole","AWSConfigServiceRolePolicy","AWSConfigUserAccess","AWSConnector","AWSControlTowerAccountServiceRolePolicy","AWSControlTowerServiceRolePolicy","AWSCostAndUsageReportAutomationPolicy","AWSDataExchangeFullAccess","AWSDataExchangeProviderFullAccess","AWSDataExchangeReadOnly","AWSDataExchangeSubscriberFullAccess","AWSDataLifecycleManagerServiceRole","AWSDataLifecycleManagerServiceRoleForAMIManagement","AWSDataLifecycleManagerSSMFullAccess","AWSDataPipeline_FullAccess","AWSDataPipeline_PowerUser","AWSDataSyncDiscoveryServiceRolePolicy","AWSDataSyncFullAccess","AWSDataSyncReadOnlyAccess","AWSDeadlineCloud-FleetWorker","AWSDeadlineCloud-UserAccessFarms","AWSDeadlineCloud-UserAccessFleets","AWSDeadlineCloud-UserAccessJobs","AWSDeadlineCloud-UserAccessQueues","AWSDeadlineCloud-WorkerHost","AWSDeepLensLambdaFunctionAccessPolicy","AWSDeepLensServiceRolePolicy","AWSDeepRacerAccountAdminAccess","AWSDeepRacerCloudFormationAccessPolicy","AWSDeepRacerDefaultMultiUserAccess","AWSDeepRacerFullAccess","AWSDeepRacerRoboMakerAccessPolicy","AWSDeepRacerServiceRolePolicy","AWSDenyAll","AWSDeviceFarmFullAccess","AWSDeviceFarmServiceRolePolicy","AWSDeviceFarmTestGridServiceRolePolicy","AWSDirectConnectFullAccess","AWSDirectConnectReadOnlyAccess","AWSDirectConnectServiceRolePolicy","AWSDirectoryServiceFullAccess","AWSDirectoryServiceReadOnlyAccess","AWSDiscoveryContinuousExportFirehosePolicy","AWSDMSFleetAdvisorServiceRolePolicy","AWSDMSServerlessServiceRolePolicy","AWSEC2CapacityReservationFleetRolePolicy","AWSEC2FleetServiceRolePolicy","AWSEC2SpotFleetServiceRolePolicy","AWSEC2SpotServiceRolePolicy","AWSEC2VssSnapshotPolicy","AWSECRPullThroughCache_ServiceRolePolicy","AWSElasticBeanstalkCustomPlatformforEC2Role","AWSElasticBeanstalkEnhancedHealth","AWSElasticBeanstalkMaintenance","AWSElasticBeanstalkManagedUpdatesCustomerRolePolicy","AWSElasticBeanstalkManagedUpdatesServiceRolePolicy","AWSElasticBeanstalkMulticontainerDocker","AWSElasticBeanstalkReadOnly","AWSElasticBeanstalkRoleCore","AWSElasticBeanstalkRoleCWL","AWSElasticBeanstalkRoleECS","AWSElasticBeanstalkRoleRDS","AWSElasticBeanstalkRoleSNS","AWSElasticBeanstalkRoleWorkerTier","AWSElasticBeanstalkService","AWSElasticBeanstalkServiceRolePolicy","AWSElasticBeanstalkWebTier","AWSElasticBeanstalkWorkerTier","AWSElasticDisasterRecoveryAgentInstallationPolicy","AWSElasticDisasterRecoveryAgentPolicy","AWSElasticDisasterRecoveryConsoleFullAccess","AWSElasticDisasterRecoveryConsoleFullAccess_v2","AWSElasticDisasterRecoveryConversionServerPolicy","AWSElasticDisasterRecoveryCrossAccountReplicationPolicy","AWSElasticDisasterRecoveryEc2InstancePolicy","AWSElasticDisasterRecoveryFailbackInstallationPolicy","AWSElasticDisasterRecoveryFailbackPolicy","AWSElasticDisasterRecoveryLaunchActionsPolicy","AWSElasticDisasterRecoveryNetworkReplicationPolicy","AWSElasticDisasterRecoveryReadOnlyAccess","AWSElasticDisasterRecoveryRecoveryInstancePolicy","AWSElasticDisasterRecoveryReplicationServerPolicy","AWSElasticDisasterRecoveryServiceRolePolicy","AWSElasticDisasterRecoveryStagingAccountPolicy","AWSElasticDisasterRecoveryStagingAccountPolicy_v2","AWSElasticLoadBalancingClassicServiceRolePolicy","AWSElasticLoadBalancingServiceRolePolicy","AWSElementalMediaConvertFullAccess","AWSElementalMediaConvertReadOnly","AWSElementalMediaLiveFullAccess","AWSElementalMediaLiveReadOnly","AWSElementalMediaPackageFullAccess","AWSElementalMediaPackageReadOnly","AWSElementalMediaPackageV2FullAccess","AWSElementalMediaPackageV2ReadOnly","AWSElementalMediaStoreFullAccess","AWSElementalMediaStoreReadOnly","AWSElementalMediaTailorFullAccess","AWSElementalMediaTailorReadOnly","AWSEnhancedClassicNetworkingMangementPolicy","AWSEntityResolutionConsoleFullAccess","AWSEntityResolutionConsoleReadOnlyAccess","AWSFaultInjectionSimulatorEC2Access","AWSFaultInjectionSimulatorECSAccess","AWSFaultInjectionSimulatorEKSAccess","AWSFaultInjectionSimulatorNetworkAccess","AWSFaultInjectionSimulatorRDSAccess","AWSFaultInjectionSimulatorSSMAccess","AWSFinSpaceServiceRolePolicy","AWSFMAdminFullAccess","AWSFMAdminReadOnlyAccess","AWSFMMemberReadOnlyAccess","AWSForWordPressPluginPolicy","AWSGitSyncServiceRolePolicy","AWSGlobalAcceleratorSLRPolicy","AWSGlueConsoleFullAccess","AWSGlueConsoleSageMakerNotebookFullAccess","AwsGlueDataBrewFullAccessPolicy","AWSGlueDataBrewServiceRole","AWSGlueSchemaRegistryFullAccess","AWSGlueSchemaRegistryReadonlyAccess","AWSGlueServiceNotebookRole","AWSGlueServiceRole","AwsGlueSessionUserRestrictedNotebookPolicy","AwsGlueSessionUserRestrictedNotebookServiceRole","AwsGlueSessionUserRestrictedPolicy","AwsGlueSessionUserRestrictedServiceRole","AWSGrafanaAccountAdministrator","AWSGrafanaConsoleReadOnlyAccess","AWSGrafanaWorkspacePermissionManagement","AWSGrafanaWorkspacePermissionManagementV2","AWSGreengrassFullAccess","AWSGreengrassReadOnlyAccess","AWSGreengrassResourceAccessRolePolicy","AWSGroundStationAgentInstancePolicy","AWSHealth_EventProcessorServiceRolePolicy","AWSHealthFullAccess","AWSHealthImagingFullAccess","AWSHealthImagingReadOnlyAccess","AWSIAMIdentityCenterAllowListForIdentityContext","AWSIdentitySyncFullAccess","AWSIdentitySyncReadOnlyAccess","AWSImageBuilderFullAccess","AWSImageBuilderReadOnlyAccess","AWSImportExportFullAccess","AWSImportExportReadOnlyAccess","AWSIncidentManagerIncidentAccessServiceRolePolicy","AWSIncidentManagerResolverAccess","AWSIncidentManagerServiceRolePolicy","AWSIoT1ClickFullAccess","AWSIoT1ClickReadOnlyAccess","AWSIoTAnalyticsFullAccess","AWSIoTAnalyticsReadOnlyAccess","AWSIoTConfigAccess","AWSIoTConfigReadOnlyAccess","AWSIoTDataAccess","AWSIoTDeviceDefenderAddThingsToThingGroupMitigationAction","AWSIoTDeviceDefenderAudit","AWSIoTDeviceDefenderEnableIoTLoggingMitigationAction","AWSIoTDeviceDefenderPublishFindingsToSNSMitigationAction","AWSIoTDeviceDefenderReplaceDefaultPolicyMitigationAction","AWSIoTDeviceDefenderUpdateCACertMitigationAction","AWSIoTDeviceDefenderUpdateDeviceCertMitigationAction","AWSIoTDeviceTesterForFreeRTOSFullAccess","AWSIoTDeviceTesterForGreengrassFullAccess","AWSIoTEventsFullAccess","AWSIoTEventsReadOnlyAccess","AWSIoTFleetHubFederationAccess","AWSIoTFleetwiseServiceRolePolicy","AWSIoTFullAccess","AWSIoTLogging","AWSIoTOTAUpdate","AWSIoTRuleActions","AWSIoTSiteWiseConsoleFullAccess","AWSIoTSiteWiseFullAccess","AWSIoTSiteWiseMonitorPortalAccess","AWSIoTSiteWiseMonitorServiceRolePolicy","AWSIoTSiteWiseReadOnlyAccess","AWSIoTThingsRegistration","AWSIoTTwinMakerServiceRolePolicy","AWSIoTWirelessDataAccess","AWSIoTWirelessFullAccess","AWSIoTWirelessFullPublishAccess","AWSIoTWirelessGatewayCertManager","AWSIoTWirelessLogging","AWSIoTWirelessReadOnlyAccess","AWSIPAMServiceRolePolicy","AWSIQContractServiceRolePolicy","AWSIQFullAccess","AWSIQPermissionServiceRolePolicy","AWSKeyManagementServiceCustomKeyStoresServiceRolePolicy","AWSKeyManagementServiceMultiRegionKeysServiceRolePolicy","AWSKeyManagementServicePowerUser","AWSLakeFormationCrossAccountManager","AWSLakeFormationDataAdmin","AWSLambda_FullAccess","AWSLambda_ReadOnlyAccess","AWSLambdaBasicExecutionRole","AWSLambdaDynamoDBExecutionRole","AWSLambdaENIManagementAccess","AWSLambdaExecute","AWSLambdaInvocation-DynamoDB","AWSLambdaKinesisExecutionRole","AWSLambdaMSKExecutionRole","AWSLambdaReplicator","AWSLambdaRole","AWSLambdaSQSQueueExecutionRole","AWSLambdaVPCAccessExecutionRole","AWSLicenseManagerConsumptionPolicy","AWSLicenseManagerLinuxSubscriptionsServiceRolePolicy","AWSLicenseManagerMasterAccountRolePolicy","AWSLicenseManagerMemberAccountRolePolicy","AWSLicenseManagerServiceRolePolicy","AWSLicenseManagerUserSubscriptionsServiceRolePolicy","AWSM2ServicePolicy","AWSManagedServices_ContactsServiceRolePolicy","AWSManagedServices_DetectiveControlsConfig_ServiceRolePolicy","AWSManagedServices_EventsServiceRolePolicy","AWSManagedServicesDeploymentToolkitPolicy","AWSMarketplaceAmiIngestion","AWSMarketplaceDeploymentServiceRolePolicy","AWSMarketplaceFullAccess","AWSMarketplaceGetEntitlements","AWSMarketplaceImageBuildFullAccess","AWSMarketplaceLicenseManagementServiceRolePolicy","AWSMarketplaceManageSubscriptions","AWSMarketplaceMeteringFullAccess","AWSMarketplaceMeteringRegisterUsage","AWSMarketplaceProcurementSystemAdminFullAccess","AWSMarketplacePurchaseOrdersServiceRolePolicy","AWSMarketplaceRead-only","AWSMarketplaceResaleAuthorizationServiceRolePolicy","AWSMarketplaceSellerFullAccess","AWSMarketplaceSellerProductsFullAccess","AWSMarketplaceSellerProductsReadOnly","AWSMediaConnectServicePolicy","AWSMediaTailorServiceRolePolicy","AWSMigrationHubDiscoveryAccess","AWSMigrationHubDMSAccess","AWSMigrationHubFullAccess","AWSMigrationHubOrchestratorConsoleFullAccess","AWSMigrationHubOrchestratorInstanceRolePolicy","AWSMigrationHubOrchestratorPlugin","AWSMigrationHubOrchestratorServiceRolePolicy","AWSMigrationHubRefactorSpaces-EnvironmentsWithoutBridgesFullAccess","AWSMigrationHubRefactorSpaces-SSMAutomationPolicy","AWSMigrationHubRefactorSpacesFullAccess","AWSMigrationHubRefactorSpacesServiceRolePolicy","AWSMigrationHubSMSAccess","AWSMigrationHubStrategyCollector","AWSMigrationHubStrategyConsoleFullAccess","AWSMigrationHubStrategyServiceRolePolicy","AWSMSKReplicatorExecutionRole","AWSNetworkFirewallServiceRolePolicy","AWSNetworkManagerCloudWANServiceRolePolicy","AWSNetworkManagerFullAccess","AWSNetworkManagerReadOnlyAccess","AWSNetworkManagerServiceRolePolicy","AWSOpsWorks_FullAccess","AWSOpsWorksCloudWatchLogs","AWSOpsWorksCMInstanceProfileRole","AWSOpsWorksCMServiceRole","AWSOpsWorksInstanceRegistration","AWSOpsWorksRegisterCLI_EC2","AWSOpsWorksRegisterCLI_OnPremises","AWSOrganizationsFullAccess","AWSOrganizationsReadOnlyAccess","AWSOrganizationsServiceTrustPolicy","AWSOutpostsAuthorizeServerPolicy","AWSOutpostsServiceRolePolicy","AWSPanoramaApplianceRolePolicy","AWSPanoramaApplianceServiceRolePolicy","AWSPanoramaFullAccess","AWSPanoramaGreengrassGroupRolePolicy","AWSPanoramaSageMakerRolePolicy","AWSPanoramaServiceLinkedRolePolicy","AWSPanoramaServiceRolePolicy","AWSPriceListServiceFullAccess","AWSPrivateCAAuditor","AWSPrivateCAFullAccess","AWSPrivateCAPrivilegedUser","AWSPrivateCAReadOnly","AWSPrivateCAUser","AWSPrivateMarketplaceAdminFullAccess","AWSPrivateMarketplaceRequests","AWSPrivateNetworksServiceRolePolicy","AWSProtonCodeBuildProvisioningBasicAccess","AWSProtonCodeBuildProvisioningServiceRolePolicy","AWSProtonDeveloperAccess","AWSProtonFullAccess","AWSProtonReadOnlyAccess","AWSProtonServiceGitSyncServiceRolePolicy","AWSProtonSyncServiceRolePolicy","AWSPurchaseOrdersServiceRolePolicy","AWSQuickSetupCFGCPacksPermissionsBoundary","AWSQuickSetupDeploymentRolePolicy","AWSQuickSetupDevOpsGuruPermissionsBoundary","AWSQuickSetupDistributorPermissionsBoundary","AWSQuickSetupPatchPolicyBaselineAccess","AWSQuickSetupPatchPolicyDeploymentRolePolicy","AWSQuickSetupPatchPolicyPermissionsBoundary","AWSQuickSetupSchedulerPermissionsBoundary","AWSQuickSetupSSMHostMgmtPermissionsBoundary","AWSQuickSightAssetBundleExportPolicy","AWSQuickSightAssetBundleImportPolicy","AWSQuicksightAthenaAccess","AWSQuickSightDescribeRDS","AWSQuickSightDescribeRedshift","AWSQuickSightElasticsearchPolicy","AWSQuickSightIoTAnalyticsAccess","AWSQuickSightListIAM","AWSQuicksightOpenSearchPolicy","AWSQuickSightSageMakerPolicy","AWSQuickSightTimestreamPolicy","AWSReachabilityAnalyzerServiceRolePolicy","AWSRefactoringToolkitFullAccess","AWSRefactoringToolkitSidecarPolicy","AWSrePostPrivateCloudWatchAccess","AWSRepostSpaceSupportOperationsPolicy","AWSResilienceHubAsssessmentExecutionPolicy","AWSResourceAccessManagerFullAccess","AWSResourceAccessManagerReadOnlyAccess","AWSResourceAccessManagerResourceShareParticipantAccess","AWSResourceAccessManagerServiceRolePolicy","AWSResourceExplorerFullAccess","AWSResourceExplorerOrganizationsAccess","AWSResourceExplorerReadOnlyAccess","AWSResourceExplorerServiceRolePolicy","AWSResourceGroupsReadOnlyAccess","AWSRoboMaker_FullAccess","AWSRoboMakerReadOnlyAccess","AWSRoboMakerServicePolicy","AWSRoboMakerServiceRolePolicy","AWSRolesAnywhereServicePolicy","AWSS3OnOutpostsServiceRolePolicy","AWSSavingsPlansFullAccess","AWSSavingsPlansReadOnlyAccess","AWSSecurityHubFullAccess","AWSSecurityHubOrganizationsAccess","AWSSecurityHubReadOnlyAccess","AWSSecurityHubServiceRolePolicy","AWSServiceCatalogAdminFullAccess","AWSServiceCatalogAdminReadOnlyAccess","AWSServiceCatalogAppRegistryFullAccess","AWSServiceCatalogAppRegistryReadOnlyAccess","AWSServiceCatalogAppRegistryServiceRolePolicy","AWSServiceCatalogEndUserFullAccess","AWSServiceCatalogEndUserReadOnlyAccess","AWSServiceCatalogOrgsDataSyncServiceRolePolicy","AWSServiceCatalogSyncServiceRolePolicy","AWSServiceRoleForAmazonEKSNodegroup","AWSServiceRoleForAmazonQDeveloper","AWSServiceRoleForCloudWatchAlarmsActionSSMServiceRolePolicy","AWSServiceRoleForCloudWatchMetrics_DbPerfInsightsServiceRolePolicy","AWSServiceRoleForCodeGuru-Profiler","AWSServiceRoleForCodeWhispererPolicy","AWSServiceRoleForEC2ScheduledInstances","AWSServiceRoleForGroundStationDataflowEndpointGroupPolicy","AWSServiceRoleForImageBuilder","AWSServiceRoleForIoTSiteWise","AWSServiceRoleForLogDeliveryPolicy","AWSServiceRoleForMonitronPolicy","AWSServiceRoleForNeptuneGraphPolicy","AWSServiceRoleForPrivateMarketplaceAdminPolicy","AWSServiceRoleForSMS","AWSServiceRoleForUserSubscriptions","AWSServiceRolePolicyForBackupReports","AWSServiceRolePolicyForBackupRestoreTesting","AWSShieldDRTAccessPolicy","AWSShieldServiceRolePolicy","AWSSSMForSAPServiceLinkedRolePolicy","AWSSSMOpsInsightsServiceRolePolicy","AWSSSODirectoryAdministrator","AWSSSODirectoryReadOnly","AWSSSOMasterAccountAdministrator","AWSSSOMemberAccountAdministrator","AWSSSOReadOnly","AWSSSOServiceRolePolicy","AWSStepFunctionsConsoleFullAccess","AWSStepFunctionsFullAccess","AWSStepFunctionsReadOnlyAccess","AWSStorageGatewayFullAccess","AWSStorageGatewayReadOnlyAccess","AWSStorageGatewayServiceRolePolicy","AWSSupplyChainFederationAdminAccess","AWSSupportAccess","AWSSupportAppFullAccess","AWSSupportAppReadOnlyAccess","AWSSupportPlansFullAccess","AWSSupportPlansReadOnlyAccess","AWSSupportServiceRolePolicy","AWSSystemsManagerAccountDiscoveryServicePolicy","AWSSystemsManagerChangeManagementServicePolicy","AWSSystemsManagerEnableConfigRecordingExecutionPolicy","AWSSystemsManagerEnableExplorerExecutionPolicy","AWSSystemsManagerForSAPFullAccess","AWSSystemsManagerForSAPReadOnlyAccess","AWSSystemsManagerOpsDataSyncServiceRolePolicy","AWSThinkboxAssetServerPolicy","AWSThinkboxAWSPortalAdminPolicy","AWSThinkboxAWSPortalGatewayPolicy","AWSThinkboxAWSPortalWorkerPolicy","AWSThinkboxDeadlineResourceTrackerAccessPolicy","AWSThinkboxDeadlineResourceTrackerAdminPolicy","AWSThinkboxDeadlineSpotEventPluginAdminPolicy","AWSThinkboxDeadlineSpotEventPluginWorkerPolicy","AWSTransferConsoleFullAccess","AWSTransferFullAccess","AWSTransferLoggingAccess","AWSTransferReadOnlyAccess","AWSTrustedAdvisorPriorityFullAccess","AWSTrustedAdvisorPriorityReadOnlyAccess","AWSTrustedAdvisorReportingServiceRolePolicy","AWSTrustedAdvisorServiceRolePolicy","AWSUserNotificationsServiceLinkedRolePolicy","AWSVendorInsightsAssessorFullAccess","AWSVendorInsightsAssessorReadOnly","AWSVendorInsightsVendorFullAccess","AWSVendorInsightsVendorReadOnly","AWSVpcLatticeServiceRolePolicy","AWSVPCS2SVpnServiceRolePolicy","AWSVPCTransitGatewayServiceRolePolicy","AWSVPCVerifiedAccessServiceRolePolicy","AWSWAFConsoleFullAccess","AWSWAFConsoleReadOnlyAccess","AWSWAFFullAccess","AWSWAFReadOnlyAccess","AWSWellArchitectedDiscoveryServiceRolePolicy","AWSWellArchitectedOrganizationsServiceRolePolicy","AWSWickrFullAccess","AWSXrayCrossAccountSharingConfiguration","AWSXRayDaemonWriteAccess","AWSXrayFullAccess","AWSXrayReadOnlyAccess","AWSXrayWriteOnlyAccess","AWSZonalAutoshiftPracticeRunSLRPolicy","BatchServiceRolePolicy","Billing","CertificateManagerServiceRolePolicy","ClientVPNServiceConnectionsRolePolicy","ClientVPNServiceRolePolicy","CloudFormationStackSetsOrgAdminServiceRolePolicy","CloudFormationStackSetsOrgMemberServiceRolePolicy","CloudFrontFullAccess","CloudFrontReadOnlyAccess","CloudHSMServiceRolePolicy","CloudSearchFullAccess","CloudSearchReadOnlyAccess","CloudTrailServiceRolePolicy","CloudWatch-CrossAccountAccess","CloudWatchActionsEC2Access","CloudWatchAgentAdminPolicy","CloudWatchAgentServerPolicy","CloudWatchApplicationInsightsFullAccess","CloudWatchApplicationInsightsReadOnlyAccess","CloudwatchApplicationInsightsServiceLinkedRolePolicy","CloudWatchApplicationSignalsFullAccess","CloudWatchApplicationSignalsReadOnlyAccess","CloudWatchApplicationSignalsServiceRolePolicy","CloudWatchAutomaticDashboardsAccess","CloudWatchCrossAccountSharingConfiguration","CloudWatchEventsBuiltInTargetExecutionAccess","CloudWatchEventsFullAccess","CloudWatchEventsInvocationAccess","CloudWatchEventsReadOnlyAccess","CloudWatchEventsServiceRolePolicy","CloudWatchFullAccess","CloudWatchFullAccessV2","CloudWatchInternetMonitorServiceRolePolicy","CloudWatchLambdaInsightsExecutionRolePolicy","CloudWatchLogsCrossAccountSharingConfiguration","CloudWatchLogsFullAccess","CloudWatchLogsReadOnlyAccess","CloudWatchNetworkMonitorServiceRolePolicy","CloudWatchReadOnlyAccess","CloudWatchSyntheticsFullAccess","CloudWatchSyntheticsReadOnlyAccess","ComprehendDataAccessRolePolicy","ComprehendFullAccess","ComprehendMedicalFullAccess","ComprehendReadOnly","ComputeOptimizerReadOnlyAccess","ComputeOptimizerServiceRolePolicy","ConfigConformsServiceRolePolicy","CostOptimizationHubAdminAccess","CostOptimizationHubReadOnlyAccess","CostOptimizationHubServiceRolePolicy","CustomerProfilesServiceLinkedRolePolicy","DatabaseAdministrator","DataScientist","DAXServiceRolePolicy","DynamoDBCloudWatchContributorInsightsServiceRolePolicy","DynamoDBKinesisReplicationServiceRolePolicy","DynamoDBReplicationServiceRolePolicy","EC2FastLaunchFullAccess","EC2FastLaunchServiceRolePolicy","EC2FleetTimeShiftableServiceRolePolicy","Ec2ImageBuilderCrossAccountDistributionAccess","EC2ImageBuilderLifecycleExecutionPolicy","EC2InstanceConnect","Ec2InstanceConnectEndpoint","EC2InstanceProfileForImageBuilder","EC2InstanceProfileForImageBuilderECRContainerBuilds","ECRReplicationServiceRolePolicy","ECRTemplateServiceRolePolicy","ElastiCacheServiceRolePolicy","ElasticLoadBalancingFullAccess","ElasticLoadBalancingReadOnly","ElementalActivationsDownloadSoftwareAccess","ElementalActivationsFullAccess","ElementalActivationsGenerateLicenses","ElementalActivationsReadOnlyAccess","ElementalAppliancesSoftwareFullAccess","ElementalAppliancesSoftwareReadOnlyAccess","ElementalSupportCenterFullAccess","EMRDescribeClusterPolicyForEMRWAL","FMSServiceRolePolicy","FSxDeleteServiceLinkedRoleAccess","GameLiftGameServerGroupPolicy","GlobalAcceleratorFullAccess","GlobalAcceleratorReadOnlyAccess","GreengrassOTAUpdateArtifactAccess","GroundTruthSyntheticConsoleFullAccess","GroundTruthSyntheticConsoleReadOnlyAccess","Health_OrganizationsServiceRolePolicy","IAMAccessAdvisorReadOnly","IAMAccessAnalyzerFullAccess","IAMAccessAnalyzerReadOnlyAccess","IAMFullAccess","IAMReadOnlyAccess","IAMSelfManageServiceSpecificCredentials","IAMUserChangePassword","IAMUserSSHKeys","IVSFullAccess","IVSReadOnlyAccess","IVSRecordToS3","KafkaConnectServiceRolePolicy","KafkaServiceRolePolicy","KeyspacesReplicationServiceRolePolicy","LakeFormationDataAccessServiceRolePolicy","LexBotPolicy","LexChannelPolicy","LightsailExportAccess","MediaConnectGatewayInstanceRolePolicy","MediaPackageServiceRolePolicy","MemoryDBServiceRolePolicy","MigrationHubDMSAccessServiceRolePolicy","MigrationHubServiceRolePolicy","MigrationHubSMSAccessServiceRolePolicy","MonitronServiceRolePolicy","NeptuneConsoleFullAccess","NeptuneFullAccess","NeptuneGraphReadOnlyAccess","NeptuneReadOnlyAccess","NetworkAdministrator","OAMFullAccess","OAMReadOnlyAccess","OpensearchIngestionSelfManagedVpcePolicy","PartnerCentralAccountManagementUserRoleAssociation","PowerUserAccess","QBusinessServiceRolePolicy","QuickSightAccessForS3StorageManagementAnalyticsReadOnly","RDSCloudHsmAuthorizationRole","ReadOnlyAccess","ResourceGroupsandTagEditorFullAccess","ResourceGroupsandTagEditorReadOnlyAccess","ResourceGroupsServiceRolePolicy","ROSAAmazonEBSCSIDriverOperatorPolicy","ROSACloudNetworkConfigOperatorPolicy","ROSAControlPlaneOperatorPolicy","ROSAImageRegistryOperatorPolicy","ROSAIngressOperatorPolicy","ROSAInstallerPolicy","ROSAKMSProviderPolicy","ROSAKubeControllerPolicy","ROSAManageSubscription","ROSANodePoolManagementPolicy","ROSASRESupportPolicy","ROSAWorkerInstancePolicy","Route53RecoveryReadinessServiceRolePolicy","Route53ResolverServiceRolePolicy","S3StorageLensServiceRolePolicy","SecretsManagerReadWrite","SecurityAudit","SecurityLakeServiceLinkedRole","ServerMigration_ServiceRole","ServerMigrationConnector","ServerMigrationServiceConsoleFullAccess","ServerMigrationServiceLaunchRole","ServerMigrationServiceRoleForInstanceValidation","ServiceQuotasFullAccess","ServiceQuotasReadOnlyAccess","ServiceQuotasServiceRolePolicy","SimpleWorkflowFullAccess","SplitCostAllocationDataServiceRolePolicy","SSMQuickSetupRolePolicy","SupportUser","SystemAdministrator","TranslateFullAccess","TranslateReadOnly","ViewOnlyAccess","VMImportExportRoleForAWSConnector","VPCLatticeFullAccess","VPCLatticeReadOnlyAccess","VPCLatticeServicesInvokeAccess","WAFLoggingServiceRolePolicy","WAFRegionalLoggingServiceRolePolicy","WAFV2LoggingServiceRolePolicy","WellArchitectedConsoleFullAccess","WellArchitectedConsoleReadOnlyAccess","WorkLinkServiceRolePolicy"] \ No newline at end of file diff --git a/lib/generated/aws-managed-policies/cdk-iam-floyd.ts b/lib/generated/aws-managed-policies/cdk-iam-floyd.ts index 97e4aa864..8838ff5ad 100644 --- a/lib/generated/aws-managed-policies/cdk-iam-floyd.ts +++ b/lib/generated/aws-managed-policies/cdk-iam-floyd.ts @@ -2239,6 +2239,11 @@ export class AwsManagedPolicy extends AwsManagedPolicyStatic { return aws_iam.ManagedPolicy.fromAwsManagedPolicyName(AwsManagedPolicyStatic.AmazonWorkSpacesServiceAccess); } + /** Provides full access to Amazon WorkSpaces Thin Client as well as limited access to required related services */ + public AmazonWorkSpacesThinClientFullAccess(): aws_iam.IManagedPolicy { + return aws_iam.ManagedPolicy.fromAwsManagedPolicyName(AwsManagedPolicyStatic.AmazonWorkSpacesThinClientFullAccess); + } + /** Provides read-only access to Amazon WorkSpaces Thin Client and its dependencies */ public AmazonWorkSpacesThinClientReadOnlyAccess(): aws_iam.IManagedPolicy { return aws_iam.ManagedPolicy.fromAwsManagedPolicyName(AwsManagedPolicyStatic.AmazonWorkSpacesThinClientReadOnlyAccess); diff --git a/lib/generated/aws-managed-policies/iam-floyd.ts b/lib/generated/aws-managed-policies/iam-floyd.ts index 022f13fc0..7efd94673 100644 --- a/lib/generated/aws-managed-policies/iam-floyd.ts +++ b/lib/generated/aws-managed-policies/iam-floyd.ts @@ -892,6 +892,8 @@ export class AwsManagedPolicy { public static AmazonWorkSpacesSelfServiceAccess = 'AmazonWorkSpacesSelfServiceAccess'; /** Provides customer account access to AWS WorkSpaces service for launching a Workspace. */ public static AmazonWorkSpacesServiceAccess = 'AmazonWorkSpacesServiceAccess'; + /** Provides full access to Amazon WorkSpaces Thin Client as well as limited access to required related services */ + public static AmazonWorkSpacesThinClientFullAccess = 'AmazonWorkSpacesThinClientFullAccess'; /** Provides read-only access to Amazon WorkSpaces Thin Client and its dependencies */ public static AmazonWorkSpacesThinClientReadOnlyAccess = 'AmazonWorkSpacesThinClientReadOnlyAccess'; /** Provides read-only access to Amazon WorkSpaces Web and its dependencies through the AWS Management Console, SDK, and CLI. */