|Work with the Eucalyptus Management Console / Work with IAM|
An IAM access policy allows you to explicitly define permissions over what your users and groups can access. The Add Access Policy page enables you to select and apply an existing access policy template, or define your own access policies by either using the policy generator or writing a policy directly using the built-in editor.
The policy generator is an easy-to-use graphical tool that allows you to create a new access policy without having to know IAM's access policy language.
You can allow all actions for a specific service
You can deny all actions for a specific service
You can allow specific actions for a service.
You can deny specific actions for a service.
You can allow or deny actions for a specific resource.
You can allow or deny permissions based on specific conditions, such as user name or image ID.
You can use this section to upload an existing policy file or write an access policy directly into the text editor.
This section allows you to apply a pre-defined access policy template.