Policy: SecretsManagerReadWrite

ARN: arn:aws:iam::aws:policy/SecretsManagerReadWrite

Allowed Actions

Actions	Services
cloudformation:CreateChangeSet	cloudformation
cloudformation:DescribeChangeSet	cloudformation
cloudformation:DescribeStackResource	cloudformation
cloudformation:DescribeStacks	cloudformation
cloudformation:ExecuteChangeSet	cloudformation
docdb-elastic:GetCluster	docdb-elastic
docdb-elastic:ListClusters	docdb-elastic
ec2:DescribeSecurityGroups	ec2
ec2:DescribeSubnets	ec2
ec2:DescribeVpcs	ec2
kms:DescribeKey	kms
kms:ListAliases	kms
kms:ListKeys	kms
lambda:AddPermission	lambda
lambda:CreateFunction	lambda
lambda:GetFunction	lambda
lambda:InvokeFunction	lambda
lambda:ListFunctions	lambda
lambda:UpdateFunctionConfiguration	lambda
rds:DescribeDBClusters	rds
rds:DescribeDBInstances	rds
redshift:DescribeClusters	redshift
redshift-serverless:GetNamespace	redshift-serverless
redshift-serverless:ListWorkgroups	redshift-serverless
s3:GetObject	s3
secretsmanager:*	secretsmanager
serverlessrepo:CreateCloudFormationChangeSet	serverlessrepo
serverlessrepo:GetApplication	serverlessrepo
tag:GetResources	tag