ec2:DescribeVolumes

Literal appearances in AWS managed IAM policies. Statements that use wildcards (for example s3:*) are not counted here. This is not an IAM authorization simulation.

Policies (any)

Allow (Action)

Deny (Action)

NotAction

Index generated 4/7/2026, 3:29:24 AM. 559 policies include at least one wildcard action string (any service).

Action reference

SAR-style (unofficial)

Service: Amazon EC2

Access level

List

Description

Grants permission to describe one or more EBS volumes

Allow (Action)

AWSApplicationMigrationEC2Access
AWSApplicationMigrationFullAccess
AWSApplicationMigrationNetworkMigrationMultiAccount
AWSApplicationMigrationServiceRolePolicy
AWSAuditManagerServiceRolePolicy
AWSBackupAdminPolicy
AWSBackupFullAccess
AWSBackupOperatorAccess
AWSBackupOperatorPolicy
AWSBackupServiceLinkedRolePolicyForBackup
AWSBackupServiceRolePolicyForBackup
AWSBackupServiceRolePolicyForRestores
AWSDataLifecycleManagerServiceRole
AWSDataLifecycleManagerServiceRoleForAMIManagement
AWSEC2VssRestorePolicy
AWSElasticBeanstalkCustomPlatformforEC2Role
AWSElasticDisasterRecoveryConsoleFullAccess
AWSElasticDisasterRecoveryConsoleFullAccess_v2
AWSElasticDisasterRecoveryCrossAccountReplicationPolicy
AWSElasticDisasterRecoveryServiceRolePolicy
AWSImageBuilderFullAccess
AWSResilienceHubAsssessmentExecutionPolicy
AWSResourceExplorerServiceRolePolicy
AWSResourceGroupsReadOnlyAccess
AWSSSMForSAPServiceLinkedRolePolicy
AWSServiceRolePolicyForBackupRestoreTesting
AWSServiceRolePolicyForWorkspacesInstances
AWSTrustedAdvisorServiceRolePolicy
AmazonEBSCSIDriverPolicy
AmazonEC2RolePolicyForApplicationWizard
AmazonEC2RolePolicyForLaunchWizard
AmazonECSInfrastructureRolePolicyForVolumes
AmazonEKSClusterPolicy
AmazonEKSServiceRolePolicy
AmazonEKSWorkerNodePolicy
AmazonEMRCleanupPolicy
AmazonEMRServicePolicy_v2
AmazonEVSServiceRolePolicy
AmazonElasticMapReduceRole
AmazonGuardDutyMalwareProtectionServiceRolePolicy
AmazonInspector2AgentlessServiceRolePolicy
AmazonRDSCustomPreviewServiceRolePolicy
AmazonRDSCustomServiceRolePolicy
CloudWatchAgentServerPolicy
CloudWatchApplicationInsightsFullAccess
CloudWatchAutomaticDashboardsAccess
CloudWatchEventsServiceRolePolicy
CloudwatchApplicationInsightsServiceLinkedRolePolicy
ComputeOptimizerAutomationServiceRolePolicy
ComputeOptimizerReadOnlyAccess
ComputeOptimizerServiceRolePolicy
EC2FastLaunchFullAccess
EC2FastLaunchServiceRolePolicy
EC2InstanceProfileForImageBuilder
ROSAAmazonEBSCSIDriverOperatorPolicy
ROSASRESupportPolicy
Route53RecoveryReadinessServiceRolePolicy
SageMakerStudioProjectUserRolePermissionsBoundary

Deny (Action)

None

NotAction

SageMakerStudioProjectUserRolePermissionsBoundary

Thanks to Ian McKay for iam-dataset (MIT), structured data derived from the AWS Service Authorization Reference. Not maintained by AWS and not guaranteed current. IAMTrail's managed policy archive is separate.

Definitions bundle generated 4/7/2026, 3:29:24 AM