AWS::IAM::GroupIAM Group
Creates a new group. For information about the number of groups you can create, see [Limitations on Entities](https://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the *User Guide*.
Properties
4 configurable properties. Click a row to see details.
Filter:
| Property | Type | Flags |
|---|---|---|
GroupName | string | Create-only |
ManagedPolicyArns | Array<string> | |
Path | string | |
Policies | Array<Policy> |
Return Values
Values returned after the resource is created. Access these with Fn::GetAtt.
| Attribute | Type | Description |
|---|---|---|
Arn | string | - |
Sample CloudFormation Template
A minimal template with required properties and common optional ones.
template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::IAM::Group
Resources:
MyResource:
Type: AWS::IAM::Group
Properties:Required IAM Permissions
Permissions CloudFormation needs in your IAM role to manage this resource.
create
iam:CreateGroupiam:PutGroupPolicyiam:AttachGroupPolicyiam:GetGroupPolicyiam:GetGroupread
iam:GetGroupiam:ListGroupPoliciesiam:GetGroupPolicyiam:ListAttachedGroupPoliciesupdate
iam:GetGroupiam:UpdateGroupiam:DetachGroupPolicyiam:AttachGroupPolicyiam:DeleteGroupPolicyiam:PutGroupPolicyiam:GetGroupPolicydelete
iam:GetGroupiam:DeleteGroupiam:ListAttachedGroupPoliciesiam:ListGroupPoliciesiam:DetachGroupPolicyiam:DeleteGroupPolicyiam:GetGroupPolicylist
iam:ListGroupsGet the IAM Cheat Sheet
Everything you need to know about IAM on one page. HD quality, print-friendly.
Download Free InfographicQuick Facts
ServiceIAM
Properties5
Required0
TaggingNot supported
Primary ID
GroupNameSupported Operations
CreateReadUpdateDeleteList
Immutable After Creation
These properties cannot be changed after the resource is created. Updating them triggers a replacement.
GroupName