Policy: NetworkAdministrator

ARN: arn:aws:iam::aws:policy/job-function/NetworkAdministrator

Allowed Actions

Actions	Services
autoscaling:Describe*	autoscaling
cloudfront:ListDistributions	cloudfront
cloudwatch:DeleteAlarms	cloudwatch
cloudwatch:DescribeAlarms	cloudwatch
cloudwatch:GetMetricStatistics	cloudwatch
cloudwatch:PutMetricAlarm	cloudwatch
directconnect:*	directconnect
ec2:AcceptTransitGatewayVpcAttachment	ec2
ec2:AcceptVpcEndpointConnections	ec2
ec2:AcceptVpcPeeringConnection	ec2
ec2:AllocateAddress	ec2
ec2:AssignIpv6Addresses	ec2
ec2:AssignPrivateIpAddresses	ec2
ec2:AssociateAddress	ec2
ec2:AssociateDhcpOptions	ec2
ec2:AssociateRouteTable	ec2
ec2:AssociateSecurityGroupVpc	ec2
ec2:AssociateSubnetCidrBlock	ec2
ec2:AssociateTransitGatewayRouteTable	ec2
ec2:AssociateVpcCidrBlock	ec2
ec2:AttachClassicLinkVpc	ec2
ec2:AttachInternetGateway	ec2
ec2:AttachNetworkInterface	ec2
ec2:AttachVpnGateway	ec2
ec2:AuthorizeSecurityGroupEgress	ec2
ec2:AuthorizeSecurityGroupIngress	ec2
ec2:CreateCarrierGateway	ec2
ec2:CreateCustomerGateway	ec2
ec2:CreateDefaultSubnet	ec2
ec2:CreateDefaultVpc	ec2
ec2:CreateDhcpOptions	ec2
ec2:CreateEgressOnlyInternetGateway	ec2
ec2:CreateFlowLogs	ec2
ec2:CreateInternetGateway	ec2
ec2:CreateLocalGatewayRoute	ec2
ec2:CreateLocalGatewayRouteTableVpcAssociation	ec2
ec2:CreateNatGateway	ec2
ec2:CreateNetworkAcl	ec2
ec2:CreateNetworkAclEntry	ec2
ec2:CreateNetworkInterface	ec2
ec2:CreateNetworkInterfacePermission	ec2
ec2:CreatePlacementGroup	ec2
ec2:CreateRoute	ec2
ec2:CreateRouteTable	ec2
ec2:CreateSecurityGroup	ec2
ec2:CreateSubnet	ec2
ec2:CreateTags	ec2
ec2:CreateTransitGateway	ec2
ec2:CreateTransitGatewayRoute	ec2
ec2:CreateTransitGatewayRouteTable	ec2
ec2:CreateTransitGatewayVpcAttachment	ec2
ec2:CreateVpc	ec2
ec2:CreateVpcEndpoint	ec2
ec2:CreateVpcEndpointConnectionNotification	ec2
ec2:CreateVpcEndpointServiceConfiguration	ec2
ec2:CreateVpcPeeringConnection	ec2
ec2:CreateVpnConnection	ec2
ec2:CreateVpnConnectionRoute	ec2
ec2:CreateVpnGateway	ec2
ec2:DeleteCarrierGateway	ec2
ec2:DeleteCustomerGateway	ec2
ec2:DeleteDhcpOptions	ec2
ec2:DeleteEgressOnlyInternetGateway	ec2
ec2:DeleteFlowLogs	ec2
ec2:DeleteInternetGateway	ec2
ec2:DeleteLocalGatewayRoute	ec2
ec2:DeleteLocalGatewayRouteTableVpcAssociation	ec2
ec2:DeleteNatGateway	ec2
ec2:DeleteNetworkAcl	ec2
ec2:DeleteNetworkAclEntry	ec2
ec2:DeleteNetworkInterface	ec2
ec2:DeleteNetworkInterfacePermission	ec2
ec2:DeletePlacementGroup	ec2
ec2:DeleteRoute	ec2
ec2:DeleteRouteTable	ec2
ec2:DeleteSecurityGroup	ec2
ec2:DeleteSubnet	ec2
ec2:DeleteTags	ec2
ec2:DeleteTransitGateway	ec2
ec2:DeleteTransitGatewayRoute	ec2
ec2:DeleteTransitGatewayRouteTable	ec2
ec2:DeleteTransitGatewayVpcAttachment	ec2
ec2:DeleteVolume	ec2
ec2:DeleteVpc	ec2
ec2:DeleteVpcEndpointConnectionNotifications	ec2
ec2:DeleteVpcEndpointServiceConfigurations	ec2
ec2:DeleteVpcEndpoints	ec2
ec2:DeleteVpcPeeringConnection	ec2
ec2:DeleteVpnConnection	ec2
ec2:DeleteVpnConnectionRoute	ec2
ec2:DeleteVpnGateway	ec2
ec2:DescribeAccountAttributes	ec2
ec2:DescribeAddresses	ec2
ec2:DescribeAvailabilityZones	ec2
ec2:DescribeCarrierGateways	ec2
ec2:DescribeClassicLinkInstances	ec2
ec2:DescribeCustomerGateways	ec2
ec2:DescribeDhcpOptions	ec2
ec2:DescribeEgressOnlyInternetGateways	ec2
ec2:DescribeFlowLogs	ec2
ec2:DescribeInstances	ec2
ec2:DescribeInternetGateways	ec2
ec2:DescribeIpv6Pools	ec2
ec2:DescribeKeyPairs	ec2
ec2:DescribeLocalGatewayRouteTableVirtualInterfaceGroupAssociations	ec2
ec2:DescribeLocalGatewayRouteTableVpcAssociations	ec2
ec2:DescribeLocalGatewayRouteTables	ec2
ec2:DescribeLocalGatewayVirtualInterfaceGroups	ec2
ec2:DescribeLocalGatewayVirtualInterfaces	ec2
ec2:DescribeLocalGateways	ec2
ec2:DescribeMovingAddresses	ec2
ec2:DescribeNatGateways	ec2
ec2:DescribeNetworkAcls	ec2
ec2:DescribeNetworkInterfaceAttribute	ec2
ec2:DescribeNetworkInterfacePermissions	ec2
ec2:DescribeNetworkInterfaces	ec2
ec2:DescribePlacementGroups	ec2
ec2:DescribePrefixLists	ec2
ec2:DescribePublicIpv4Pools	ec2
ec2:DescribeRouteTables	ec2
ec2:DescribeSecurityGroupReferences	ec2
ec2:DescribeSecurityGroupRules	ec2
ec2:DescribeSecurityGroupVpcAssociations	ec2
ec2:DescribeSecurityGroups	ec2
ec2:DescribeStaleSecurityGroups	ec2
ec2:DescribeSubnets	ec2
ec2:DescribeTags	ec2
ec2:DescribeTransitGatewayAttachments	ec2
ec2:DescribeTransitGatewayRouteTables	ec2
ec2:DescribeTransitGatewayVpcAttachments	ec2
ec2:DescribeTransitGateways	ec2
ec2:DescribeVpcAttribute	ec2
ec2:DescribeVpcClassicLink	ec2
ec2:DescribeVpcClassicLinkDnsSupport	ec2
ec2:DescribeVpcEndpointConnectionNotifications	ec2
ec2:DescribeVpcEndpointConnections	ec2
ec2:DescribeVpcEndpointServiceConfigurations	ec2
ec2:DescribeVpcEndpointServicePermissions	ec2
ec2:DescribeVpcEndpointServices	ec2
ec2:DescribeVpcEndpoints	ec2
ec2:DescribeVpcPeeringConnections	ec2
ec2:DescribeVpcs	ec2
ec2:DescribeVpnConnections	ec2
ec2:DescribeVpnGateways	ec2
ec2:DetachClassicLinkVpc	ec2
ec2:DetachInternetGateway	ec2
ec2:DetachNetworkInterface	ec2
ec2:DetachVpnGateway	ec2
ec2:DisableTransitGatewayRouteTablePropagation	ec2
ec2:DisableVgwRoutePropagation	ec2
ec2:DisableVpcClassicLink	ec2
ec2:DisableVpcClassicLinkDnsSupport	ec2
ec2:DisassociateAddress	ec2
ec2:DisassociateRouteTable	ec2
ec2:DisassociateSecurityGroupVpc	ec2
ec2:DisassociateSubnetCidrBlock	ec2
ec2:DisassociateTransitGatewayRouteTable	ec2
ec2:DisassociateVpcCidrBlock	ec2
ec2:EnableTransitGatewayRouteTablePropagation	ec2
ec2:EnableVgwRoutePropagation	ec2
ec2:EnableVpcClassicLink	ec2
ec2:EnableVpcClassicLinkDnsSupport	ec2
ec2:ExportTransitGatewayRoutes	ec2
ec2:GetConsoleScreenshot	ec2
ec2:GetSecurityGroupsForVpc	ec2
ec2:GetTransitGatewayAttachmentPropagations	ec2
ec2:GetTransitGatewayRouteTableAssociations	ec2
ec2:GetTransitGatewayRouteTablePropagations	ec2
ec2:GetVpnConnectionDeviceSampleConfiguration	ec2
ec2:GetVpnConnectionDeviceTypes	ec2
ec2:GetVpnTunnelReplacementStatus	ec2
ec2:ModifyNetworkInterfaceAttribute	ec2
ec2:ModifySecurityGroupRules	ec2
ec2:ModifySubnetAttribute	ec2
ec2:ModifyTransitGateway	ec2
ec2:ModifyTransitGatewayVpcAttachment	ec2
ec2:ModifyVpcAttribute	ec2
ec2:ModifyVpcEndpoint	ec2
ec2:ModifyVpcEndpointConnectionNotification	ec2
ec2:ModifyVpcEndpointServiceConfiguration	ec2
ec2:ModifyVpcEndpointServicePermissions	ec2
ec2:ModifyVpcPeeringConnectionOptions	ec2
ec2:ModifyVpcTenancy	ec2
ec2:ModifyVpnConnection	ec2
ec2:ModifyVpnConnectionOptions	ec2
ec2:ModifyVpnTunnelCertificate	ec2
ec2:ModifyVpnTunnelOptions	ec2
ec2:MoveAddressToVpc	ec2
ec2:RejectTransitGatewayVpcAttachment	ec2
ec2:RejectVpcEndpointConnections	ec2
ec2:RejectVpcPeeringConnection	ec2
ec2:ReleaseAddress	ec2
ec2:ReplaceNetworkAclAssociation	ec2
ec2:ReplaceNetworkAclEntry	ec2
ec2:ReplaceRoute	ec2
ec2:ReplaceRouteTableAssociation	ec2
ec2:ReplaceTransitGatewayRoute	ec2
ec2:ReplaceVpnTunnel	ec2
ec2:ResetNetworkInterfaceAttribute	ec2
ec2:RestoreAddressToClassic	ec2
ec2:RevokeSecurityGroupEgress	ec2
ec2:RevokeSecurityGroupIngress	ec2
ec2:SearchLocalGatewayRoutes	ec2
ec2:SearchTransitGatewayRoutes	ec2
ec2:UnassignIpv6Addresses	ec2
ec2:UnassignPrivateIpAddresses	ec2
ec2:UpdateSecurityGroupRuleDescriptionsEgress	ec2
ec2:UpdateSecurityGroupRuleDescriptionsIngress	ec2
elasticbeanstalk:Describe*	elasticbeanstalk
elasticbeanstalk:List*	elasticbeanstalk
elasticbeanstalk:RequestEnvironmentInfo	elasticbeanstalk
elasticbeanstalk:RetrieveEnvironmentInfo	elasticbeanstalk
elasticloadbalancing:*	elasticloadbalancing
iam:CreateServiceLinkedRole	iam
iam:GetRole	iam
iam:ListRoles	iam
iam:PassRole	iam
logs:DescribeLogGroups	logs
logs:DescribeLogStreams	logs
logs:GetLogEvents	logs
networkmanager:*	networkmanager
route53:*	route53
route53domains:*	route53domains
s3:GetBucketLocation	s3
s3:GetBucketWebsite	s3
s3:ListBucket	s3
sns:CreateTopic	sns
sns:ListSubscriptionsByTopic	sns
sns:ListTopics	sns