Predefined permissions - Amazon IAM Identity Center
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Predefined permissions

You can create a predefined permission set with Amazon managed policies.

When you create a permission set with predefined permissions, you choose one policy from a list of Amazon managed policies. Within the available policies, you can choose from Common permission policies and Job function policies.

Common permission policies

Choose from a list of Amazon managed policies that make it possible to access resources in your entire Amazon Web Services account. You can add one of the following policies:

  • AdministratorAccess

  • PowerUserAccess

  • ReadOnlyAccess

  • ViewOnlyAccess

Job function policies

Choose from a list of Amazon managed policies that make it possible to access resources in your Amazon Web Services account that might be relevant to a job within your organization. You can add one of the following policies:

  • Billing

  • DataScientist

  • DatabaseAdministrator

  • NetworkAdministrator

  • SecurityAudit

  • SupportUser

  • SystemAdministrator

For detailed descriptions of the available common permission policies and job function policies, see Amazon managed policies for job functions in the Amazon Identity and Access Management user guide.

For instructions on how to create a permission set, see Create, manage, and delete permission sets.