Skip to content

Policy: AWSLambda_FullAccess

ARN: arn:aws:iam::aws:policy/AWSLambda_FullAccess

Allowed Actions

Actions Services
cloudformation:DescribeStacks cloudformation
cloudformation:ListStackResources cloudformation
cloudwatch:GetMetricData cloudwatch
cloudwatch:ListMetrics cloudwatch
ec2:DescribeSecurityGroups ec2
ec2:DescribeSubnets ec2
ec2:DescribeVpcs ec2
iam:GetPolicy iam
iam:GetPolicyVersion iam
iam:GetRole iam
iam:GetRolePolicy iam
iam:ListAttachedRolePolicies iam
iam:ListRolePolicies iam
iam:ListRoles iam
iam:PassRole iam
kms:ListAliases kms
lambda:* lambda
logs:DescribeLogGroups logs
logs:DescribeLogStreams logs
logs:FilterLogEvents logs
logs:GetLogEvents logs
logs:StartLiveTail logs
logs:StopLiveTail logs
states:DescribeStateMachine states
states:ListStateMachines states
tag:GetResources tag
xray:BatchGetTraces xray
xray:GetTraceSummaries xray