# Implementing service control policies and VPC endpoint policies
<a name="implementing-console-private-access-policies"></a>

You can use service control policies (SCPs) and VPC endpoint policies for AWS Management Console Private Access to limit the set of accounts that are allowed to use the AWS Management Console from within your VPC and its connected on-premises networks.

**Topics**
+ [Using AWS Management Console Private Access with AWS Organizations service control policies](private-access-with-SCPs.md)
+ [Allow AWS Management Console use for expected accounts and organizations only (trusted identities)](account-identity.md)