Policy: AmazonDocDBReadOnlyAccess

ARN: arn:aws:iam::aws:policy/AmazonDocDBReadOnlyAccess

Allowed Actions

Actions	Services
cloudwatch:GetMetricStatistics	cloudwatch
cloudwatch:ListMetrics	cloudwatch
ec2:DescribeAccountAttributes	ec2
ec2:DescribeAvailabilityZones	ec2
ec2:DescribeInternetGateways	ec2
ec2:DescribeSecurityGroups	ec2
ec2:DescribeSubnets	ec2
ec2:DescribeVpcAttribute	ec2
ec2:DescribeVpcs	ec2
kms:ListAliases	kms
kms:ListKeyPolicies	kms
kms:ListKeys	kms
kms:ListRetirableGrants	kms
logs:DescribeLogStreams	logs
logs:GetLogEvents	logs
rds:DescribeAccountAttributes	rds
rds:DescribeCertificates	rds
rds:DescribeDBClusterParameterGroups	rds
rds:DescribeDBClusterParameters	rds
rds:DescribeDBClusterSnapshotAttributes	rds
rds:DescribeDBClusterSnapshots	rds
rds:DescribeDBClusters	rds
rds:DescribeDBEngineVersions	rds
rds:DescribeDBInstances	rds
rds:DescribeDBLogFiles	rds
rds:DescribeDBParameterGroups	rds
rds:DescribeDBParameters	rds
rds:DescribeDBSubnetGroups	rds
rds:DescribeEventCategories	rds
rds:DescribeEventSubscriptions	rds
rds:DescribeEvents	rds
rds:DescribeOrderableDBInstanceOptions	rds
rds:DescribePendingMaintenanceActions	rds
rds:DownloadDBLogFilePortion	rds
rds:ListTagsForResource	rds