Skip to content

Policy: AWSCloudTrail_FullAccess

ARN: arn:aws:iam::aws:policy/AWSCloudTrail_FullAccess

Allowed Actions

Actions Services
cloudtrail:* cloudtrail
dynamodb:ListGlobalTables dynamodb
dynamodb:ListTables dynamodb
iam:GetRolePolicy iam
iam:GetUser iam
iam:ListRoles iam
iam:PassRole iam
kms:CreateAlias kms
kms:CreateKey kms
kms:ListAliases kms
kms:ListKeys kms
lambda:ListFunctions lambda
logs:CreateLogGroup logs
s3:CreateBucket s3
s3:GetBucketLocation s3
s3:GetBucketPolicy s3
s3:ListAllMyBuckets s3
s3:PutBucketPolicy s3
s3:PutBucketPublicAccessBlock s3
sns:AddPermission sns
sns:CreateTopic sns
sns:GetTopicAttributes sns
sns:ListTopics sns
sns:SetTopicAttributes sns