ec2:DescribeSnapshots

Literal appearances in AWS managed IAM policies. Statements that use wildcards (for example s3:*) are not counted here. This is not an IAM authorization simulation.

Policies (any)

Allow (Action)

Deny (Action)

NotAction

Index generated 4/7/2026, 3:29:24 AM. 559 policies include at least one wildcard action string (any service).

Action reference

SAR-style (unofficial)

Service: Amazon EC2

Access level

List

Description

Grants permission to describe one or more EBS snapshots

Allow (Action)

AWSApplicationMigrationEC2Access
AWSApplicationMigrationFullAccess
AWSApplicationMigrationNetworkMigrationMultiAccount
AWSApplicationMigrationReplicationServerPolicy
AWSApplicationMigrationServiceRolePolicy
AWSAuditManagerServiceRolePolicy
AWSBackupAdminPolicy
AWSBackupFullAccess
AWSBackupGuardDutyRolePolicyForScans
AWSBackupOperatorAccess
AWSBackupOperatorPolicy
AWSBackupServiceLinkedRolePolicyForBackup
AWSBackupServiceRolePolicyForBackup
AWSBackupServiceRolePolicyForIndexing
AWSBackupServiceRolePolicyForItemRestores
AWSBackupServiceRolePolicyForRestores
AWSBackupServiceRolePolicyForScans
AWSConnector
AWSDataLifecycleManagerServiceRole
AWSDataLifecycleManagerServiceRoleForAMIManagement
AWSEC2VssRestorePolicy
AWSEC2VssSnapshotPolicy
AWSElasticBeanstalkCustomPlatformforEC2Role
AWSElasticBeanstalkManagedUpdatesCustomerRolePolicy
AWSElasticBeanstalkReadOnly
AWSElasticBeanstalkService
AWSElasticDisasterRecoveryConsoleFullAccess
AWSElasticDisasterRecoveryConsoleFullAccess_v2
AWSElasticDisasterRecoveryReplicationServerPolicy
AWSElasticDisasterRecoveryServiceRolePolicy
AWSImageBuilderFullAccess
AWSMarketplaceFullAccess
AWSMarketplaceImageBuildFullAccess
AWSMarketplaceSellerFullAccess
AWSMarketplaceSellerProductsFullAccess
AWSMarketplaceSellerProductsReadOnly
AWSOpsWorksCMServiceRole
AWSResilienceHubAsssessmentExecutionPolicy
AWSResourceExplorerServiceRolePolicy
AWSResourceGroupsReadOnlyAccess
AWSSSMForSAPServiceLinkedRolePolicy
AWSServiceRoleForImageBuilder
AWSServiceRoleForSMS
AWSStorageGatewayFullAccess
AWSStorageGatewayReadOnlyAccess
AWSTrustedAdvisorServiceRolePolicy
AccessAnalyzerServiceRolePolicy
AmazonEBSCSIDriverPolicy
AmazonEKSServiceRolePolicy
AmazonGuardDutyMalwareProtectionServiceRolePolicy
AmazonInspector2AgentlessServiceRolePolicy
AmazonRDSCustomPreviewServiceRolePolicy
AmazonRDSCustomServiceRolePolicy
CloudWatchEventsServiceRolePolicy
ComputeOptimizerAutomationServiceRolePolicy
EC2FastLaunchFullAccess
EC2FastLaunchServiceRolePolicy
EC2InstanceProfileForImageBuilder
LightsailExportAccess
ROSAAmazonEBSCSIDriverOperatorPolicy
ServerMigration_ServiceRole

Deny (Action)

None

NotAction

None

Thanks to Ian McKay for iam-dataset (MIT), structured data derived from the AWS Service Authorization Reference. Not maintained by AWS and not guaranteed current. IAMTrail's managed policy archive is separate.

Definitions bundle generated 4/7/2026, 3:29:24 AM