Writing IAM Policies
Write a policy to give readonly permission on s3 and ec2 and also permission to create and delete buckets in s3
- This policy is all about ec2 readonly and s3 readonly
- Refer Here for the solution
Tools for quickly writing and testing policies
Activity 3: Write an IAM Policy which gives permission to do anything in ec2 but not delete
- This is effective ec2 full access and removing delete permissions
- Refer Here for the policy
Activity 4: Write an IAM policy which allows user to view s3 buckets from 10AM to 5 PM
- AWS supports conditional policies with the help of conditional keys
- Global conditional keys
- IAM Condition keys
- Per service condition keys
