ec2:DescribeRegions
Literal appearances in AWS managed IAM policies. Statements that use wildcards (for example s3:*) are not counted here. This is not an IAM authorization simulation.
Policies (any)
48
Allow (Action)
48
Deny (Action)
0
NotAction
0
Index generated 4/7/2026, 1:17:11 PM. 561 policies include at least one wildcard action string (any service).
Action reference
SAR-style (unofficial)Service: Amazon EC2
Access level
ListDescription
Grants permission to describe one or more AWS Regions that are currently available in your account
Allow (Action)
- AWSApplicationMigrationNetworkMigrationMultiAccount
- AWSCloudFrontVPCOriginServiceRolePolicy
- AWSCloudMapFullAccess
- AWSConnector
- AWSDataSyncFullAccess
- AWSElasticBeanstalkCustomPlatformforEC2Role
- AWSFMAdminFullAccess
- AWSFMAdminReadOnlyAccess
- AWSGlobalAcceleratorSLRPolicy
- AWSImageBuilderFullAccess
- AWSLicenseManagerLinuxSubscriptionsServiceRolePolicy
- AWSManagementConsoleAdministratorAccess
- AWSManagementConsoleBasicUserAccess
- AWSNetworkManagerServiceRolePolicy
- AWSQuickSetupSchedulerPermissionsBoundary
- AWSQuickSetupStartStopInstancesExecutionPolicy
- AWSReachabilityAnalyzerServiceRolePolicy
- AWSRefactoringToolkitFullAccess
- AWSResilienceHubAsssessmentExecutionPolicy
- AWSResourceExplorerFullAccess
- AWSResourceExplorerOrganizationsAccess
- AWSResourceExplorerReadOnlyAccess
- AWSShieldDRTAccessPolicy
- AWSThinkboxAWSPortalAdminPolicy
- AWSTrustedAdvisorServiceRolePolicy
- AWSWAFConsoleFullAccess
- AWSWAFConsoleReadOnlyAccess
- AmazonApplicationWizardFullaccess
- AmazonEC2RolePolicyForLaunchWizard
- AmazonGrafanaCloudWatchAccess
- AmazonInspector2ServiceRolePolicy
- AmazonInspectorServiceRolePolicy
- AmazonRDSCustomPreviewServiceRolePolicy
- AmazonRDSCustomServiceRolePolicy
- AmazonRoute53AutoNamingFullAccess
- AmazonRoute53FullAccess
- AmazonRoute53GlobalResolverFullAccess
- AmazonVPCCrossAccountNetworkInterfaceOperations
- AmazonVPCNetworkAccessAnalyzerFullAccessPolicy
- AmazonVPCReachabilityAnalyzerFullAccessPolicy
- DeclarativePoliciesEC2Report
- EC2FastLaunchFullAccess
- GlobalAcceleratorFullAccess
- NetworkSecurityDirectorServiceLinkedRolePolicy
- ROSAInstallerPolicy
- ROSASRESupportPolicy
- ROSAWorkerInstancePolicy
- ViewOnlyAccess
Deny (Action)
None
NotAction
None
Thanks to Ian McKay for iam-dataset (MIT), structured data derived from the AWS Service Authorization Reference. Not maintained by AWS and not guaranteed current. IAMTrail's managed policy archive is separate.
Definitions bundle generated 4/7/2026, 1:17:11 PM