What is AWS Service Control Policies (SCPs) and how do they differ from IAM policies?

AWS Cloud Practitioner Medium

AWS Cloud Practitioner — Medium

What is AWS Service Control Policies (SCPs) and how do they differ from IAM policies?

Key points

  • SCPs limit permissions, IAM policies grant them
  • SCPs are applied at the account or OU level
  • IAM policies are applied to specific identities
  • SCPs don't grant permissions, they restrict them

Ready to go further?

Start full exam Practice more questions

Related questions