The article on creating policy on AWS IAM Quite often, the user on AWS service needs to be limited AWS resource access. This article demonstrates how to set AWS access policy. The policy allows the users to access AWS security group section and to list EC2 instance existing on AWS. Type the word "IAM" as picture shown below List down menu displays link to IAM page. On the left panel, find the "Policies" to click on it Then, click on the Create policy button Now, the user will land on the page Click on "JSON" tab. Paste these JSON text to the input box { "Version": "2012-10-17", "Statement": [ { "Sid": "VisualEditor2", "Effect": "Allow", "Action": [ "ec2:DescribeSecurityGroupReferences", ...