Using AWS Managed Policies and Linked Roles to Manage Administrator Access to WorkSpaces Applications Resources
By default, IAM users don't have the permissions required to create or modify WorkSpaces Applications resources, or perform tasks by using the WorkSpaces Applications API. This means that these users can't perform these actions in the WorkSpaces Applications console or by using WorkSpaces Applications AWS CLI commands. To allow IAM users to create or modify resources and perform tasks, attach an IAM policy to the IAM users or groups that require those permissions.
When you attach a policy to a user, group of users, or IAM role, it allows or denies the users permission to perform the specified tasks on the specified resources.
Contents
AWS Managed Policies Required to Access WorkSpaces Applications Resources
Checking for the AmazonAppStreamServiceAccess Service Role and Policies
Checking for the ApplicationAutoScalingForAmazonAppStreamAccess Service Role and Policies
Checking for the AmazonAppStreamPCAAccess Service Role and Policies
