Reputation: 12068
What is the max number of permissions I can assign to a custom policy on AWS?
Say an organization has custom IAM policies from which roles are assigned any number of policies. Is there a max number of permissions per custom policy that can be assigned? Or is the policy size limited by char count?
As far as documentation, I'm not certain if there is a threshold, or if the max value is based on bytes, or n characters:
Q: How many policies can I attach to an IAM role?
For inline policies: You can add as many inline policies as you want to a user, role, or group, but the total aggregate policy size (the sum size of all inline policies) per entity cannot exceed the following limits:
- User policy size cannot exceed 2,048 characters.
- Role policy size cannot exceed 10,240 characters.
- Group policy size cannot exceed 5,120 characters.
Upvotes: 0
Views: 5430
Answers (1)
Reputation: 668
The docs you reference seem fairly straightforward; according to what you quote the limit is on the sum of characters in all the inline policies attached to the user / role / group
Upvotes: 2
Related Questions
- Organizing AWS IAM permissions: limit of 10 policies?
- AWS IAM users limit if exceeds
- IAM policy problem I want to attach only one policy and deny others
- How long does AWS IAM's principle identifiers can be set and how to do if it exceeds the limitation?
- AWS IAM Policy grant permissions for some EC2 instances
- IAM- Switch role for AWS access and policies limit
- AWS IAM Policy to Grant All service permission to specific instances
- AWS IAM Role Policy Resource Restriction
- AWS Policy Limited Administrator
- AWS S3 max number of buckets for IAM user or Root account?