ec2:CreateNetworkInterfacePermission
Literal appearances in AWS managed IAM policies. Statements that use wildcards (for example s3:*) are not counted here. This is not an IAM authorization simulation.
Policies (any)
54
Allow (Action)
54
Deny (Action)
0
NotAction
2
Index generated 4/7/2026, 3:29:24 AM. 559 policies include at least one wildcard action string (any service).
Action reference
SAR-style (unofficial)Service: Amazon EC2
Access level
Permissions managementDescription
Grants permission to create a permission for an AWS-authorized user to perform certain operations on a network interface
Resource types
- network-interface*
Allow (Action)
- APIGatewayServiceRolePolicy
- AWSB9InternalServicePolicy
- AWSDataSyncFullAccess
- AWSDeepRacerRoboMakerAccessPolicy
- AWSDeviceFarmServiceRolePolicy
- AWSDeviceFarmTestGridServiceRolePolicy
- AWSElasticDisasterRecoveryConsoleFullAccess_v2
- AWSElasticDisasterRecoveryServiceRolePolicy
- AWSM2ServicePolicy
- AWSMediaConnectServicePolicy
- AWSPCSServiceRolePolicy
- AWSRoboMakerServicePolicy
- AWSRoboMakerServiceRolePolicy
- AWSS3OnOutpostsServiceRolePolicy
- AWSVPCTransitGatewayServiceRolePolicy
- AWSVpcLatticeServiceRolePolicy
- AmazonDataZoneSageMakerEnvironmentRolePermissionsBoundary
- AmazonECSServiceRolePolicy
- AmazonEKSForFargateServiceRolePolicy
- AmazonEKSServicePolicy
- AmazonEKSServiceRolePolicy
- AmazonEKSVPCResourceController
- AmazonEVSServiceRolePolicy
- AmazonElasticMapReduceEditorsRole
- AmazonFSxServiceRolePolicy
- AmazonMQApiFullAccess
- AmazonMQFullAccess
- AmazonMWAAServerlessServiceRolePolicy
- AmazonMWAAServiceRolePolicy
- AmazonNimbleStudio-StudioAdmin
- AmazonNimbleStudio-StudioUser
- AmazonRoute53ResolverFullAccess
- AmazonSageMakerCoreServiceRolePolicy
- AmazonSageMakerFullAccess
- AmazonSageMakerHyperPodInferenceAccess
- AmazonSageMakerNotebooksServiceRolePolicy
- AmazonTimestreamInfluxDBServiceRolePolicy
- AmazonVPCCrossAccountNetworkInterfaceOperations
- AmazonVPCFullAccess
- AmazonWorkLinkServiceRolePolicy
- BedrockAgentCoreNetworkServiceRolePolicy
- ClientVPNServiceRolePolicy
- CloudWatchNetworkMonitorServiceRolePolicy
- KafkaConnectServiceRolePolicy
- KafkaServiceRolePolicy
- NetworkAdministrator
- RTBFabricServiceRolePolicy
- SageMakerStudioAdminIAMDefaultExecutionPolicy
- SageMakerStudioAdminIAMPermissiveExecutionPolicy
- SageMakerStudioProjectRoleMachineLearningPolicy
- SageMakerStudioProjectUserRolePermissionsBoundary
- SageMakerStudioUserIAMDefaultExecutionPolicy
- SageMakerStudioUserIAMPermissiveExecutionPolicy
- WorkLinkServiceRolePolicy
Deny (Action)
Thanks to Ian McKay for iam-dataset (MIT), structured data derived from the AWS Service Authorization Reference. Not maintained by AWS and not guaranteed current. IAMTrail's managed policy archive is separate.
Definitions bundle generated 4/7/2026, 3:29:24 AM