ec2:DescribeSnapshots
Literal appearances in AWS managed IAM policies. Statements that use wildcards (for example s3:*) are not counted here. This is not an IAM authorization simulation.
Policies (any)
63
Allow (Action)
63
Deny (Action)
0
NotAction
0
Index generated 5/22/2026, 8:10:29 PM. 562 policies include at least one wildcard action string (any service).
Action reference
SAR-style (unofficial)Service: Amazon EC2
Access level
ListDescription
Grants permission to describe one or more EBS snapshots
Allow (Action)
- AWSApplicationMigrationEC2Access
- AWSApplicationMigrationFullAccess
- AWSApplicationMigrationNetworkMigrationMultiAccount
- AWSApplicationMigrationReplicationServerPolicy
- AWSApplicationMigrationServiceRolePolicy
- AWSAuditManagerServiceRolePolicy
- AWSBackupAdminPolicy
- AWSBackupFullAccess
- AWSBackupGuardDutyRolePolicyForScans
- AWSBackupOperatorAccess
- AWSBackupOperatorPolicy
- AWSBackupServiceLinkedRolePolicyForBackup
- AWSBackupServiceRolePolicyForBackup
- AWSBackupServiceRolePolicyForIndexing
- AWSBackupServiceRolePolicyForItemRestores
- AWSBackupServiceRolePolicyForRestores
- AWSBackupServiceRolePolicyForScans
- AWSConnector
- AWSDataLifecycleManagerServiceRole
- AWSDataLifecycleManagerServiceRoleForAMIManagement
- AWSEC2VssRestorePolicy
- AWSEC2VssSnapshotPolicy
- AWSElasticBeanstalkCustomPlatformforEC2Role
- AWSElasticBeanstalkManagedUpdatesCustomerRolePolicy
- AWSElasticBeanstalkReadOnly
- AWSElasticBeanstalkService
- AWSElasticDisasterRecoveryConsoleFullAccess
- AWSElasticDisasterRecoveryConsoleFullAccess_v2
- AWSElasticDisasterRecoveryReplicationServerPolicy
- AWSElasticDisasterRecoveryServiceRolePolicy
- AWSImageBuilderFullAccess
- AWSMarketplaceFullAccess
- AWSMarketplaceImageBuildFullAccess
- AWSMarketplaceSellerFullAccess
- AWSMarketplaceSellerProductsFullAccess
- AWSMarketplaceSellerProductsReadOnly
- AWSOpsWorksCMServiceRole
- AWSResilienceHubAsssessmentExecutionPolicy
- AWSResourceExplorerServiceRolePolicy
- AWSResourceGroupsReadOnlyAccess
- AWSSSMForSAPServiceLinkedRolePolicy
- AWSServiceRoleForImageBuilder
- AWSServiceRoleForSMS
- AWSStorageGatewayFullAccess
- AWSStorageGatewayReadOnlyAccess
- AWSTrustedAdvisorServiceRolePolicy
- AccessAnalyzerServiceRolePolicy
- AmazonEBSCSIDriverEKSClusterScopedPolicy
- AmazonEBSCSIDriverPolicy
- AmazonEBSCSIDriverPolicyV2
- AmazonEKSServiceRolePolicy
- AmazonGuardDutyMalwareProtectionServiceRolePolicy
- AmazonInspector2AgentlessServiceRolePolicy
- AmazonRDSCustomPreviewServiceRolePolicy
- AmazonRDSCustomServiceRolePolicy
- CloudWatchEventsServiceRolePolicy
- ComputeOptimizerAutomationServiceRolePolicy
- EC2FastLaunchFullAccess
- EC2FastLaunchServiceRolePolicy
- EC2InstanceProfileForImageBuilder
- LightsailExportAccess
- ROSAAmazonEBSCSIDriverOperatorPolicy
- ServerMigration_ServiceRole
Deny (Action)
None
NotAction
None
Thanks to Ian McKay for iam-dataset (MIT), structured data derived from the AWS Service Authorization Reference. Not maintained by AWS and not guaranteed current. IAMTrail's managed policy archive is separate.
Definitions bundle generated 5/22/2026, 8:10:29 PM