Working With AWS Managed Policies, Customer Managed Policies, and Inline Policies

45 minutes
  • 3 Learning Objectives

About this Hands-on Lab

In this lab, we’ll explore and work with the different types of IAM policies available: AWS managed policies, customer managed policies, and inline policies. An AWS managed policy is a standalone policy that is created and administered by AWS. A customer managed policy is a standalone policy that you administer in your own AWS account. An inline policy is a policy that’s embedded in an IAM identity (a user, group, or role).

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Create a Customer Managed Policy

Create a new customer managed policy named MyCustomerManagedPolicy with read access to DynamoDB.

Attach the Correct Policies to the Users

Add the correct policies to the users:

  • Attach the customer managed policy named MyCustomerManagedPolicy to charlie.
  • Attach the AWS managed policy named AWSLambda_FullAccessto sally.
  • Attach a new inline policy named MyInlinePolicy with read-only permission for S3 to user ian.
Attach Your Customer Managed Policy to Sally
  • Attach MyCustomerManagedPolicy to sally.
  • See if you can attach MyInlinePolicy to sally.

Additional Resources

Ensure you are operating out of the N. Virginia (us-east-1) Region. When the lab is ready, you can log in to the AWS console using the credentials provided, and you should see that the following 3 users have been created for you: ​

  • Sally
  • Charlie
  • Ian

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?