How to Fix iam:GetPolicy Access Errors When Managing IAM Policies
Fix IAM access errors in Impossible Cloud. Learn how to grant permissions to view, update, or attach IAM policies using a simple policy.
If you’re encountering an error like:
your-user is not authorized to perform: iam:GetPolicy on resource: policy
This happens when the calling user or role doesn’t have permission to read IAM policy metadata.
To solve this you can add the following statement to the users policy
{
"Statement": [
{
"Sid": "AllowPolicyReadActions",
"Effect": "Allow",
"Action": [
"iam:GetPolicy",
"iam:GetPolicyVersion",
"iam:ListPolicyVersions"
],
"Resource": "*"
}
],
"Version": "2012-10-17"
}
These actions are required to view IAM policies within Impossible Cloud.