s3 gateway has a iam policy, what happens if i explicitly deny access to a bucket though the s3 gateway policy and have a ec2 role with explicit allow to access the same bucket?

Question

will the explicit deny override the allow like in any general IAM policy?

Faye Ellis Answered 2 years ago · Answer 1 · 2019-04-09 09:47:45

Faye Ellis

Answered 2 years ago

Yes an explicit deny will always override an allow.

1 Answers