By default, IAM users and roles don't have permission to create or modify VPC resources. They also can't perform tasks using the AWS Management Console, AWS CLI, or AWS API. An IAM administrator must create IAM policies that grant users and roles permission to perform specific API operations on the specified resources they need. The administrator must then attach those policies to the IAM users or groups that require those permissions.
To learn how to create an IAM identity-based policy using these example JSON policy documents, see Creating Policies on the JSON Tab in the IAM User Guide.
By default, IAM users and roles don't have permission to create or modify VPC resources. They also can't perform tasks using the AWS Management Console, AWS CLI, or AWS API. An IAM administrator must create IAM policies that grant users and roles permission to perform specific API operations on the specified resources they need. The administrator must then attach those policies to the IAM users or groups that require those permissions.
Contents
[Policy best practices] (https://docs.aws.amazon.com/vpc/latest/userguide/vpc-policy-examples.html#security_iam_service-with-iam-policy-best-practices) [Use the Amazon VPC console] (https://docs.aws.amazon.com/vpc/latest/userguide/vpc-policy-examples.html#security_iam_id-based-policy-examples-console) [Create a VPC with a public subnet] (https://docs.aws.amazon.com/vpc/latest/userguide/vpc-policy-examples.html#vpc-public-subnet-iam) [Modify and delete VPC resources] (https://docs.aws.amazon.com/vpc/latest/userguide/vpc-policy-examples.html#modify-vpc-resources-iam) [Manage security groups] (https://docs.aws.amazon.com/vpc/latest/userguide/vpc-policy-examples.html#vpc-security-groups-iam) [Manage security group rules] (https://docs.aws.amazon.com/vpc/latest/userguide/vpc-policy-examples.html#vpc-security-group-rules-iam) [Launch instances into a specific subnet] (https://docs.aws.amazon.com/vpc/latest/userguide/vpc-policy-examples.html#subnet-sg-example-iam) [Launch instances into a specific VPC] (https://docs.aws.amazon.com/vpc/latest/userguide/vpc-policy-examples.html#subnet-ami-example-iam) Additional Amazon VPC policy examples
To learn how to create an IAM identity-based policy using these example JSON policy documents, see Creating Policies on the JSON Tab in the IAM User Guide.