Skip to content

Policy: SecurityLakeResourceManagementServiceRolePolicy

ARN: arn:aws:iam::aws:policy/aws-service-role/SecurityLakeResourceManagementServiceRolePolicy

Allowed Actions

Actions Services
events:ListRules events
events:PutRule events
glue:BatchCreatePartition glue
glue:CreatePartition glue
glue:GetDatabase glue
glue:GetTable glue
glue:GetTables glue
glue:UpdateTable glue
lakeformation:GetDataLakeSettings lakeformation
lakeformation:ListPermissions lakeformation
lambda:DeleteEventSourceMapping lambda
lambda:DeleteFunctionConcurrency lambda
lambda:GetAlias lambda
lambda:GetEventSourceMapping lambda
lambda:GetFunction lambda
lambda:GetFunctionConcurrency lambda
lambda:GetFunctionConfiguration lambda
lambda:GetPolicy lambda
lambda:GetProvisionedConcurrencyConfig lambda
lambda:GetRuntimeManagementConfig lambda
lambda:ListEventSourceMappings lambda
lambda:PublishVersion lambda
lambda:PutFunctionConcurrency lambda
lambda:PutProvisionedConcurrencyConfig lambda
lambda:UpdateEventSourceMapping lambda
lambda:UpdateFunctionConfiguration lambda
lambda:UpdateFunctionConfiguration lambda
logs:DescribeLogStreams logs
logs:GetLogEvents logs
logs:GetLogRecord logs
logs:GetQueryResults logs
logs:StartQuery logs
s3:DeleteObject s3
s3:GetBucketNotification s3
s3:GetEncryptionConfiguration s3
s3:GetLifecycleConfiguration s3
s3:GetObject s3
s3:GetObjectAttributes s3
s3:GetReplicationConfiguration s3
s3:ListBucket s3
s3:PutBucketNotification s3
s3:PutLifecycleConfiguration s3
s3:PutObject s3
s3:RestoreObject s3
sqs:ChangeMessageVisibility sqs
sqs:DeleteMessage sqs
sqs:GetQueueAttributes sqs
sqs:GetQueueUrl sqs
sqs:ListDeadLetterSourceQueues sqs
sqs:ListMessageMoveTasks sqs
sqs:ReceiveMessage sqs
sqs:SendMessage sqs
sqs:SetQueueAttributes sqs
sqs:StartMessageMoveTask sqs