Permissions List

The following table includes a list of all Amazon Web Services activities, their available operations and associated permissions.

EC2 Activities

Activity	Operations	Permissions
AWSConfigureRobot	GetDocumentAsync CreateDocumentAsync CreateAssociationAsync SendCommandAsync DeleteDocumentAsync	ssm:GetDocument ssm:CreateDocument ssm:CreateAssociation ssm:SendCommand ssm:DeleteDocument ssm:ListAssociations
AWSCreateInstance	RunInstancesAsync CreateTagsAsync DescribeInstancesAsync DescribeInstanceAttributeAsync DescribeImagesAsync	ec2:RunInstances ec2:CreateTags ec2:DescribeInstances ec2:DescribeInstanceAttribute ec2:DescribeImages
AWSCreateInstanceFromTemplate	RunInstancesAsync CreateTagsAsync DescribeInstancesAsync DescribeInstanceAttributeAsync DescribeImagesAsync	ec2:RunInstances ec2:CreateTags ec2:DescribeInstances ec2:DescribeInstanceAttribute ec2:DescribeImages
AWSGetInstance	DescribeInstancesAsync DescribeInstanceAttributeAsync DescribeImagesAsync	ec2:DescribeInstances ec2:DescribeInstanceAttribute ec2:DescribeImages
AWSGetInstanceList	DescribeInstancesAsync DescribeInstanceAttributeAsync DescribeImagesAsync	ec2:DescribeInstances ec2:DescribeInstanceAttribute ec2:DescribeImages
AWSRebootInstance	RebootInstancesAsync DescribeInstancesAsync DescribeInstanceAttributeAsync DescribeImagesAsync	ec2:RebootInstances ec2:DescribeInstances ec2:DescribeInstanceAttribute ec2:DescribeImages
AWSRunPowerShellCommand	GetDocumentAsync CreateDocumentAsync CreateAssociationAsync SendCommandAsync DeleteDocumentAsync DescribeInstancesAsync DescribeInstanceAttributeAsync DescribeImagesAsync	ssm:GetDocument ssm:CreateDocument ssm:CreateAssociation ssm:SendCommand ssm:DeleteDocument ec2:DescribeInstances ec2:DescribeInstanceAttribute ec2:DescribeImages ssm:ListAssociations
AWSStartInstance	StartInstancesAsync DescribeInstancesAsync DescribeInstanceAttributeAsync DescribeImagesAsync	ec2:StartInstances ec2:DescribeInstances ec2:DescribeInstanceAttribute ec2:DescribeImages
AWSStopInstance	StopInstancesAsync DescribeInstancesAsync DescribeInstanceAttributeAsync DescribeImagesAsync	ec2:StopInstances ec2:DescribeInstances ec2:DescribeInstanceAttribute ec2:DescribeImages
AWSTerminateInstance	TerminateInstancesAsync DescribeInstancesAsync DescribeInstanceAttributeAsync DescribeImagesAsync	ec2:TerminateInstances ec2:DescribeInstances ec2:DescribeInstanceAttribute ec2:DescribeImages

S3 Buckets Activities

Activity	Operations	Permissions
AWSConfigureLoggingBucket	GetACLAsync PutACLAsync PutBucketLoggingAsync	s3:GetBucketAcl s3:PutBucketAcl s3:PutBucketLogging
AWSConfigurePublicAccessBucket	PutPublicAccessBlockAsync	s3:PutBucketPublicAccessBlock
AWSCreateBucket	DoesS3BucketExistV2Async PutBucketAsync PutBucketVersioningAsync DeleteBucketEncryptionAsync PutBucketEncryptionAsync PutBucketTaggingAsync PutPublicAccessBlockAsync ListBucketsAsync GetBucketLocationAsync GetBucketTaggingAsync GetBucketVersioningAsync GetACLAsync GetBucketLoggingAsync GetObjectLockConfigurationAsync GetPublicAccessBlockAsync GetBucketEncryptionAsync DeleteS3BucketWithObjectsAsync	s3:GetBucketAcl s3:CreateBucket s3:PutBucketObjectLockConfiguration s3:PutBucketVersioning s3:PutEncryptionConfiguration s3:PutEncryptionConfiguration s3:PutBucketTagging s3:PutBucketPublicAccessBlock s3:ListBucket s3:GetBucketLocation s3:GetBucketTagging s3:GetBucketVersioning s3:GetBucketAcl s3:GetBucketLogging s3:GetBucketObjectLockConfiguration s3:GetBucketPublicAccessBlock s3:GetEncryptionConfiguration s3:DeleteBucket s3:DeleteObject
AWSDeleteBucket	GetBucketVersioningAsync ListVersionsAsync ListObjectsV2Async DeleteObjectsAsync DeleteBucketAsync	s3:GetBucketVersioning s3:ListBucketVersions s3:ListBucket s3:DeleteObjectVersion s3:DeleteBucket s3:ListAllMyBuckets
AWSDeleteBucketPolicy	DeleteBucketPolicyAsync	s3:DeleteBucketPolicy
AWSEmptyBucket	GetBucketVersioningAsync ListVersionsAsync ListObjectsV2Async DeleteObjectsAsync	s3:GetBucketVersioning s3:ListBucketVersions s3:ListBucket s3:DeleteObjectVersion
AWSGetBucket	DoesS3BucketExistV2Async ListBucketsAsync GetBucketLocationAsync GetBucketTaggingAsync GetACLAsync GetBucketVersioningAsync GetBucketLoggingAsync GetObjectLockConfigurationAsync GetPublicAccessBlockAsync GetBucketEncryptionAsync	s3:GetBucketAcl (optional) s3:ListBucket s3:GetBucketLocation s3:GetBucketTagging s3:GetBucketAcl s3:GetBucketVersioning s3:GetBucketLogging s3:GetBucketObjectLockConfiguration s3:GetBucketPublicAccessBlock s3:GetEncryptionConfiguration
AWSGetBucketList	ListBucketsAsync GetBucketLocationAsync GetBucketTaggingAsync DoesS3BucketExistV2Async	s3:ListBucket s3:GetBucketLocation s3:GetBucketTagging s3:GetBucketAcl
AWSGetBucketPolicy	GetBucketPolicyAsync	s3:GetBucketPolicy
AWSSetBucketPolicy	PutBucketPolicyAsync	s3:PutBucketPolicy
AWSUpdateBucket	DoesS3BucketExistV2Async PutBucketVersioningAsync DeleteBucketEncryptionAsync PutBucketEncryptionAsync PutBucketTaggingAsync PutPublicAccessBlockAsync	s3:GetBucketAcl s3:PutBucketVersioning s3:PutEncryptionConfiguration s3:PutEncryptionConfiguration s3:PutBucketTagging s3:PutBucketPublicAccessBlock

S3 Objects Activities

Activity	Operations	Permissions
AWSCopyObject	GetBucketLocationAsync CopyObjectAsync	s3:GetBucketLocation s3:GetObject s3:PutObject
AWSDeleteMultipleObjects	DeleteObjectsAsync	s3:DeleteObjectVersion s3:GetObject
AWSDeleteSingleObject	DeleteObjectsAsync	s3:DeleteObjectVersion s3:GetObject
AWSDownloadSingleObject	GetObjectAsync	s3:GetObject
AWSForEachObject	ListObjectsV2Async GetObjectMetadataAsync GetBucketLocationAsync GetObjectTaggingAsync ListVersionsAsync	s3:ListBucket s3:GetObject s3:ListBucketVersions s3:GetBucketLocation s3:GetObjectTagging s3:ListBucketVersions
AWSGetObject	GetObjectMetadataAsync GetBucketLocationAsync GetObjectTaggingAsync ListVersionsAsync	s3:ListBucketVersions s3:GetBucketLocation s3:GetObjectTagging s3:ListBucketVersions s3:GetObject
AWSGetObjectACL	GetACLAsync	s3:GetObjectAcl s3:GetObject
AWSSetObjectACL	GetACLAsync PutACLAsync	s3:GetObjectAcl s3:PutObjectAcl s3:GetObject
AWSUploadMultipleObjects	UploadDirectoryAsync	s3:PutObject s3:ListBucketMultipartUploads s3:ListMultipartUploadParts s3:AbortMultipartUpload s3:GetObject
AWSUploadSingleObject	UploadAsync GetObjectMetadataAsync GetBucketLocationAsync GetObjectTaggingAsync ListVersionsAsync GetACLAsync PutACLAsync	s3:GetObject s3:PutObject s3:PutObjectTagging s3:PutObjectVersionTagging s3:ListBucketVersions s3:GetBucketLocation s3:GetObjectTagging s3:GetObjectVersionTagging s3:GetObjectAcl s3:PutObjectAcl s3:ListBucketMultipartUploads s3:ListMultipartUploadParts s3:AbortMultipartUpload

IAM Group Activities

Activity	Operations	Permissions
AWSAddUserToGroup	AddUserToGroupAsync	iam:AddUserToGroup
AWSCreateGroup	CreateGroupAsync	iam:CreateGroup
AWSDeleteGroup	DeleteGroupAsync GetGroupAsync RemoveUserFromGroupAsync ListGroupPoliciesAsync DeleteGroupPolicyAsync ListAttachedGroupPoliciesAsync DetachGroupPolicyAsync	iam:DeleteGroup iam:GetGroup iam:RemoveUserFromGroup iam:ListGroupPolicies iam:DeleteGroupPolicy iam:ListAttachedGroupPolicies iam:DetachGroupPolicy
AWSForEachGroup	ListGroupsAsync	iam:ListGroups
AWSGetGroup	GetGroupAsync	iam:GetGroup
AWSRemoveUserFromGroup	RemoveUserFromGroupAsync	iam:RemoveUserFromGroup
AWSUpdateGroup	UpdateGroupAsync GetGroupAsync	iam:UpdateGroup iam:GetGroup

IAM Policy Activities

Activity	Operations	Permissions
AWSAddRemoveInlinePolicy	PutGroupPolicyAsync DeleteGroupPolicyAsync PutRolePolicyAsync DeleteRolePolicyAsync PutUserPolicyAsync DeleteUserPolicyAsync	iam:PutGroupPolicy iam:DeleteGroupPolicy iam:PutRolePolicy iam:DeleteRolePolicy iam:PutUserPolicy iam:DeleteUserPolicy
AWSAttachDetachManagedPolicy	AttachGroupPolicyAsync DetachGroupPolicyAsync AttachRolePolicyAsync DetachRolePolicyAsync AttachUserPolicyAsync DetachUserPolicyAsync	iam:AttachGroupPolicy iam:DetachGroupPolicy iam:AttachRolePolicy iam:DetachRolePolicy iam:AttachUserPolicy iam:DetachUserPolicy
AWSCreateManagedPolicy	CreatePolicyAsync GetPolicyAsync ListPolicyVersionsAsync GetPolicyVersionAsync	iam:CreatePolicy iam:GetPolicy iam:ListPolicyVersions iam:GetPolicyVersion
AWSDeleteManagedPolicy	ListEntitiesForPolicyAsync DetachGroupPolicyAsync DetachRolePolicyAsync DetachUserPolicyAsync ListPolicyVersionsAsync GetPolicyVersionAsync DeletePolicyVersionAsync DeletePolicyAsync	iam:ListEntitiesForPolicy iam:DetachGroupPolicy iam:DetachRolePolicy iam:DetachUserPolicy iam:ListPolicyVersions iam:GetPolicyVersion iam:DeletePolicyVersion iam:DeletePolicy
AWSForEachManagedPolicy	ListPoliciesAsync ListPolicyTagsAsync ListPolicyVersionsAsync GetPolicyVersionAsync	iam:ListPolicies iam:ListPolicyTags iam: ListPolicyVersions iam;GetPolicyVersion
AWSGetIAMIdentityInlinePolicies	ListGroupPoliciesAsync GetGroupPolicyAsync ListRolePoliciesAsync GetRolePolicyAsync ListUserPoliciesAsync GetUserPolicyAsync	iam:ListGroupPolicies iam:GetGroupPolicy iam:ListRolePolicies iam:GetRolePolicy iam:ListUserPolicies iam:GetUSerPolicy
AWSGetIAMIdentityManagedPolicies	ListAttachedGroupPoliciesAsync ListAttachedRolePoliciesAsync ListAttachedUserPoliciesAsync	iam:ListAttachedGroupPolicies iam:ListAttachedRolePolicies iam:ListAttachedUserPolicies
AWSGetIdentitiesAttachedToPolicy	ListEntitiesForPolicyAsync	iam:ListEntitiesForPolicy
AWSGetManagedPolicy	GetPolicyAsync ListPolicyVersionsAsync GetPolicyVersionAsync	iam:GetPolicy iam:ListPolicyVersions iam:GetPolicyVersion
AWSUpdateManagedPolicy	UntagPolicyAsync TagPolicyAsync CreatePolicyVersionAsync SetDefaultPolicyVersionAsync DeletePolicyVersionAsync GetPolicyAsync ListPolicyVersionsAsync GetPolicyVersionAsync	iam:UntagPolicy iam:TagPolicy iam:CreatePolicyVersion iam:SetDefaultPolicyVersion iam:DeletePolicyVersion iam:GetPolicy iam:ListPolicyVersions iam:GetPolicyVersion

IAM Role Activities

Activity	Operations	Permissions
AWSAddRoleToInstanceProfile	AddRoleToInstanceProfileAsync GetInstanceProfileAsync RemoveRoleFromInstanceProfileAsync	iam:AddRoleToInstanceProfile iam:GetInstanceProfile iam:RemoveRoleFromInstanceProfile
AWSRemoveRoleFromInstanceProfile	RemoveRoleFromInstanceProfileAsync	iam:RemoveRoleFromInstanceProfile
AWSCreateRole	CreateRoleAsync GetRoleAsync	iam:CreateRole iam:GetRole
AWSDeleteRole	DeleteRoleAsync ListInstanceProfilesForRoleAsync RemoveRoleFromInstanceProfileAsync ListRolePoliciesAsync DeleteRolePolicyAsync ListAttachedRolePoliciesAsync DetachRolePolicyAsync GetInstanceProfileAsync DeleteInstanceProfileAsync	iam:DeleteRole iam:ListInstanceProfilesForRole iam:RemoveRoleFromInstanceProfile iam:ListRolePolicies iam:DeleteRolePolicy iam:ListAttachedRolePolicies iam:DetachRolePolicy iam:GetInstanceProfile iam:DeleteInstanceProfile
AWSGetRole	GetRoleAsync	iam:GetRole
AWSUpdateRole	UpdateRoleAsync DeleteRolePermissionsBoundaryAsync PutRolePermissionsBoundaryAsync UntagRoleAsync TagRoleAsync GetRoleAsync	iam:UpdateRole iam:DeleteRolePermissionsBoundary iam:PutRolePermissionsBoundary iam:UntagRole iam:TagRole iam:GetRole
AWSForEachRole	ListRolesAsync ListRoleTagsAsync	iam:ListRoles iam:ListRoleTags

IAM User Activities

Activity	Operations	Permissions
AWSChangeUserPassword	UpdateLoginProfileAsync AttachUserPolicyAsync	iam:UpdateLoginProfile iam:AttachUserPolicy
AWSCreateUser	CreateUserAsync CreateLoginProfileAsync AttachUserPolicyAsync CreateAccessKeyAsync	iam:CreateUser iam:CreateLoginProfile iam:AttachUserPolicy iam:CreateAccessKey
AWSGetUser	GetUserAsync	iam:GetUser
AWSDeleteUser	DeleteUserAsync DeleteLoginProfileAsync ListAccessKeysAsync DeleteAccessKeyAsync ListSigningCertificatesAsync DeleteSigningCertificateAsync ListSSHPublicKeysAsync DeleteSSHPublicKeyAsync ListServiceSpecificCredentialsAsync DeleteServiceSpecificCredentialAsync ListVirtualMFADevicesAsync DeactivateMFADeviceAsync DeleteVirtualMFADeviceAsync ListUserPoliciesAsync DeleteUserPolicyAsync ListAttachedUserPoliciesAsync DetachUserPolicyAsync ListGroupsForUserAsync RemoveUserFromGroupAsync	iam:DeleteUser iam:DeleteLoginProfile iam:ListAccessKeys iam:DeleteAccessKey iam:ListSigningCertificates iam:DeleteSigningCertificate iam:ListSSHPublicKeys iam:DeleteSSHPublicKey iam:ListServiceSpecificCredentials iam:DeleteServiceSpecificCredential iam:ListVirtualMFADevices iam:DeactivateMFADevice iam:DeleteVirtualMFADevice iam:ListUserPolicies iam:DeleteUserPolicy iam:ListAttachedUserPolicies iam:DetachUserPolicy iam:ListGroupsForUser iam:RemoveUserFromGroup
AWSUpdateUser	UpdateUserAsync DeleteUserPermissionsBoundaryAsync PutUserPermissionsBoundaryAsync UntagUserAsync TagUserAsync GetUserAsync	iam:UpdateUser iam:DeleteUserPermissionsBoundary iam:PutUserPermissionsBoundary iam:UntagUser iam:TagUser iam:GetUser
AWSForEachUser	ListUsersAsync ListUserTagsAsync	iam:ListUsers iam:ListUserTags
AWSForEachUserGroup	ListGroupsForUserAsync	iam:ListGroupsForUser
AWSForEachUserInGroup	GetGroupAsync ListUserTagsAsync	iam:GetGroup iam:ListUserTags

On this page

EC2 Activities
S3 Buckets Activities
S3 Objects Activities
IAM Group Activities
IAM Policy Activities
IAM Role Activities
IAM User Activities

Was this page helpful?

PREVIOUSProject Compatibility

NEXTActivities

Support and Services

Get The Help You Need

UiPath Academy

Learning RPA - Automation Courses

UiPath Forum

UiPath Community Forum

Trust and Security

Cookies Policy