Policy: AWSAuditManagerAdministratorAccess ARN: arn:aws:iam::aws:policy/AWSAuditManagerAdministratorAccess Allowed Actions Actions Services auditmanager:* auditmanager controlcatalog:ListCommonControls controlcatalog controlcatalog:ListDomains controlcatalog controlcatalog:ListObjectives controlcatalog events:DeleteRule events events:DescribeRule events events:DisableRule events events:EnableRule events events:ListTargetsByRule events events:PutRule events events:PutTargets events events:RemoveTargets events iam:CreateServiceLinkedRole iam iam:DeleteServiceLinkedRole iam iam:GetServiceLinkedRoleDeletionStatus iam iam:GetUser iam iam:ListRoles iam iam:ListUsers iam iam:UpdateRoleDescription iam kms:CreateGrant kms kms:DescribeKey kms kms:ListAliases kms kms:ListKeys kms organizations:DeregisterDelegatedAdministrator organizations organizations:DescribeAccount organizations organizations:DescribeOrganization organizations organizations:DescribeOrganizationalUnit organizations organizations:EnableAWSServiceAccess organizations organizations:ListAccounts organizations organizations:ListAccountsForParent organizations organizations:ListChildren organizations organizations:ListParents organizations organizations:RegisterDelegatedAdministrator organizations s3:ListAllMyBuckets s3 sns:ListTopics sns tag:GetResources tag