AWS Certified Solutions Architect - Associate (SAA-C02)

Sign Up Free or Log In to participate!

wanted to understand user role and policy and the association of them with user

can someone explain the user role vs policy in deep detail, eve a link will be helpfull

2 Answers

In a brief, the role is what should this user do in our system?, and it’s consisting of some policies, each policy represents some actions will be given to that user.

So the Role consists of one or more policy.

AFAIK, User is tied to physical user, whereas Role is tied to actual resource (EC2, S3 etc) in the AWS i.e. If EC2 resource needs to access S3 resource, it needs access permission for S3 and that comes from the Role. If EC2 has right Role which grants its to read S3, it can read file from S3 but can’t write. The Policy are set of rules usually defined in JSON which can be attached to User, Group or Roles.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?