ec2:DeleteSecurityGroup

Literal appearances in AWS managed IAM policies. Statements that use wildcards (for example s3:*) are not counted here. This is not an IAM authorization simulation.

Policies (any)

Allow (Action)

Deny (Action)

NotAction

Index generated 4/7/2026, 3:29:24 AM. 559 policies include at least one wildcard action string (any service).

Action reference

SAR-style (unofficial)

Service: Amazon EC2

Access level

Write

Description

Grants permission to delete a security group

Resource types

security-group*

Allow (Action)

AWSApplicationMigrationNetworkMigrationMultiAccount
AWSCloud9ServiceRolePolicy
AWSCloudFrontVPCOriginServiceRolePolicy
AWSDataPipelineRole
AWSDeepRacerCloudFormationAccessPolicy
AWSDirectoryServiceFullAccess
AWSElasticBeanstalkCustomPlatformforEC2Role
AWSElasticBeanstalkManagedUpdatesCustomerRolePolicy
AWSElasticBeanstalkRoleCore
AWSElasticBeanstalkService
AWSGlobalAcceleratorSLRPolicy
AWSIoTDeviceTesterForFreeRTOSFullAccess
AWSKeyManagementServiceCustomKeyStoresServiceRolePolicy
AWSMarketplaceFullAccess
AWSMigrationHubRefactorSpacesFullAccess
AWSMigrationHubRefactorSpacesServiceRolePolicy
AWSOpsWorksCMServiceRole
AWSServiceRoleForAmazonEKSNodegroup
AWSServiceRoleForGammaInternalAmazonEKSNodegroup
AWSThinkboxAWSPortalAdminPolicy
AdministratorAccess-AWSElasticBeanstalk
AmazonApplicationWizardFullaccess
AmazonDRSVPCManagement
AmazonDataZoneProjectDeploymentPermissionsBoundary
AmazonECSInfrastructureRoleforExpressGatewayServices
AmazonECS_FullAccess
AmazonEKSClusterPolicy
AmazonEKSLocalOutpostServiceRolePolicy
AmazonEKSServiceRolePolicy
AmazonElasticMapReduceFullAccess
AmazonElasticMapReduceRole
AmazonGuardDutyServiceRolePolicy
AmazonLaunchWizardFullAccessV2
AmazonLaunchWizardFullaccess
AmazonLaunchWizard_Fullaccess
AmazonRDSBetaServiceRolePolicy
AmazonRDSPreviewServiceRolePolicy
AmazonRDSServiceRolePolicy
AmazonRedshiftServiceLinkedRolePolicy
AmazonSageMakerNotebooksServiceRolePolicy
AmazonVPCFullAccess
AmazonWorkMailFullAccess
AmazonZocaloFullAccess
CloudWatchNetworkMonitorServiceRolePolicy
DAXServiceRolePolicy
EC2FastLaunchFullAccess
ElastiCacheServiceRolePolicy
FMSServiceRolePolicy
NetworkAdministrator
ROSAControlPlaneOperatorPolicy
ROSAInstallerPolicy
ROSAKubeControllerPolicy
ROSASharedVPCEndpointPolicy
SageMakerStudioAdminIAMConsolePolicy
SageMakerStudioAdminIAMDefaultExecutionPolicy
SageMakerStudioAdminIAMPermissiveExecutionPolicy
SageMakerStudioProjectProvisioningRolePolicy
SystemAdministrator

Deny (Action)

None

NotAction

None

Thanks to Ian McKay for iam-dataset (MIT), structured data derived from the AWS Service Authorization Reference. Not maintained by AWS and not guaranteed current. IAMTrail's managed policy archive is separate.

Definitions bundle generated 4/7/2026, 3:29:24 AM