Skip to content

Policy: AWSCompromisedKeyQuarantineV3

ARN: arn:aws:iam::aws:policy/AWSCompromisedKeyQuarantineV3

Allowed Actions

Actions Services
amplify:CreateBackendEnvironment amplify
amplify:CreateDeployment amplify
bedrock:CreateFoundationModelAgreement bedrock
bedrock:CreateModelInvocationJob bedrock
bedrock:InvokeModel bedrock
bedrock:InvokeModelWithResponseStream bedrock
bedrock:PutFoundationModelEntitlement bedrock
cloudtrail:LookupEvents cloudtrail
codebuild:CreateProject codebuild
ec2:AcceptReservedInstancesExchangeQuote ec2
ec2:CreateReservedInstancesListing ec2
ec2:PurchaseReservedInstancesOffering ec2
ec2:RequestSpotInstances ec2
ec2:RunInstances ec2
ec2:StartInstances ec2
ecr:GetAuthorizationToken ecr
ecs:CreateCluster ecs
ecs:CreateService ecs
ecs:RegisterTaskDefinition ecs
glue:CreateJob glue
iam:AddUserToGroup iam
iam:AttachGroupPolicy iam
iam:AttachRolePolicy iam
iam:AttachUserPolicy iam
iam:ChangePassword iam
iam:CreateAccessKey iam
iam:CreateInstanceProfile iam
iam:CreateLoginProfile iam
iam:CreatePolicyVersion iam
iam:CreateRole iam
iam:CreateUser iam
iam:DeleteAccessKey iam
iam:DeleteRole iam
iam:DetachUserPolicy iam
iam:ListUsers iam
iam:PassRole iam
iam:PutGroupPolicy iam
iam:PutRolePolicy iam
iam:PutUserPermissionsBoundary iam
iam:PutUserPolicy iam
iam:SetDefaultPolicyVersion iam
iam:UpdateAccessKey iam
iam:UpdateAccountPasswordPolicy iam
iam:UpdateAssumeRolePolicy iam
iam:UpdateLoginProfile iam
iam:UpdateUser iam
lambda:AddLayerVersionPermission lambda
lambda:AddPermission lambda
lambda:CreateFunction lambda
lambda:GetEventSourceMapping lambda
lambda:GetPolicy lambda
lambda:ListTags lambda
lambda:PutProvisionedConcurrencyConfig lambda
lambda:TagResource lambda
lambda:UntagResource lambda
lambda:UpdateFunctionCode lambda
lightsail:Create* lightsail
lightsail:Delete* lightsail
lightsail:DownloadDefaultKeyPair lightsail
lightsail:GetInstanceAccessDetails lightsail
lightsail:Start* lightsail
lightsail:Update* lightsail
mediapackagev2:CreateChannel mediapackagev2
organizations:CreateAccount organizations
organizations:CreateOrganization organizations
organizations:InviteAccountToOrganization organizations
s3:CreateBucket s3
s3:DeleteBucket s3
s3:DeleteBucketPolicy s3
s3:DeleteObject s3
s3:DeleteObjectVersion s3
s3:GetObject s3
s3:ListAllMyBuckets s3
s3:ListBucket s3
s3:ObjectOwnerOverrideToBucketOwner s3
s3:PutAccountPublicAccessBlock s3
s3:PutBucketAcl s3
s3:PutBucketCors s3
s3:PutBucketOwnershipControls s3
s3:PutBucketPolicy s3
s3:PutLifecycleConfiguration s3
sagemaker:CreateEndpointConfig sagemaker
sagemaker:CreateProcessingJob sagemaker
savingsplans:CreateSavingsPlan savingsplans
ses:GetSendQuota ses
ses:ListIdentities ses
sns:GetSMSAttributes sns
sts:GetFederationToken sts
sts:GetSessionToken sts