logs:DescribeLogGroups

Literal appearances in AWS managed IAM policies. Statements that use wildcards (for example s3:*) are not counted here. This is not an IAM authorization simulation.

Policies (any)

98

Allow (Action)

98

Deny (Action)

0

NotAction

2

Index generated 4/7/2026, 3:29:24 AM. 559 policies include at least one wildcard action string (any service).

Action reference

SAR-style (unofficial)

Service: Amazon CloudWatch Logs

Access level

List

Description

Grants permission to return all the log groups that are associated with the AWS account making the request

Allow (Action)

Deny (Action)

None

NotAction

Thanks to Ian McKay for iam-dataset (MIT), structured data derived from the AWS Service Authorization Reference. Not maintained by AWS and not guaranteed current. IAMTrail's managed policy archive is separate.

Definitions bundle generated 4/7/2026, 3:29:24 AM