Policies

Policies

The Policies page provides a list of enumerated IAM policies in the entire AWS environment. The list contains the Policy Type, Attachments, Admin Privileges, Wildcards, Risk Score, Exposure Point and Issue Counts.

Policies

Policy Details

Details page contains the Risk Score of the policy, Exposure Point, Information and Issues panes.

You can analyze objects in the Graph module by clicking the Visualize button on the upper left side of the Information Pane.

Policy Details

Information

Information Pane can contain different badges to highlight important attributes.

Badge
Description

AWS Managed

Indicates that the policy is managed by AWS and maintained by Amazon.

Custom Managed

Indicates that the policy is a customer-managed policy created within the AWS account.

Inline Policy

Indicates that the policy is embedded directly into a user, group, or role rather than existing as a standalone policy.

Information Pane contains Details, Users, Groups, Roles and Policy Document tabs.


Details

Details tab contains attributes below about the IAM policy object.

Attribute
Description

Policy Name

The name of the IAM policy, used for identification within AWS.

Policy ID

The unique identifier assigned to the IAM policy by AWS.

ARN

The Amazon Resource Name that uniquely identifies the IAM policy across AWS.

Account ID

The AWS account ID that the IAM policy belongs to; shown as aws for AWS managed policies.

Description

A user-defined or AWS-provided text field describing the policy's purpose.

Path

The path associated with the IAM policy, used for organizational grouping.

Created

The date and time when the IAM policy was created.

Updated

The most recent date and time the policy was modified.

Default Version

The currently active version of the policy document.

Attachment Count

The number of IAM identities (users, groups, or roles) the policy is currently attached to.

Is Attachable

Indicates whether the policy can be attached to IAM identities.

Object ID

The unique identifier of the policy object, equivalent to the IAM Policy ID.


Users

Users tab contains a list of IAM users that the policy is directly attached to.

Users

Groups

Groups tab contains a list of IAM groups that the policy is attached to.

Groups

Roles

Roles tab contains a list of IAM roles that the policy is attached to.

Roles

Policy Document

Policy Document tab displays the full JSON content of the IAM policy document, including all statements, actions, effects, and resources defined within the policy.

Policy Document

Issues

Issues pane contains identified security issues on the IAM policy object.

Last updated

Was this helpful?