iot:*AWS AWS IoT IAM Actions
290 IAM actions for iot:*
Actions
290 actions available. Filter by access level or search by name.
Filter:
| Action | Access Level |
|---|---|
iot:AcceptCertificateTransfer | Write |
iot:AddThingToBillingGroup | Write |
iot:AddThingToThingGroup | Write |
iot:AssociateSbomWithPackageVersion | Write |
iot:AssociateTargetsWithJob | Write |
iot:AttachPolicy | Permissions |
iot:AttachPrincipalPolicy | Permissions |
iot:AttachSecurityProfile | Write |
iot:AttachThingPrincipal | Write |
iot:CancelAuditMitigationActionsTask | Write |
iot:CancelAuditTask | Write |
iot:CancelCertificateTransfer | Write |
iot:CancelDetectMitigationActionsTask | Write |
iot:CancelJob | Write |
iot:CancelJobExecution | Write |
iot:ClearDefaultAuthorizer | Read |
iot:CloseTunnel | Write |
iot:ConfirmTopicRuleDestination | Read |
iot:Connect | Read |
iot:CreateAuditSuppression | Write |
iot:CreateAuthorizer | Write |
iot:CreateBillingGroup | Write |
iot:CreateCertificateFromCsr | Write |
iot:CreateCertificateProvider | Write |
iot:CreateCommand | Write |
iot:CreateCustomMetric | Write |
iot:CreateDimension | Write |
iot:CreateDomainConfiguration | Write |
iot:CreateDynamicThingGroup | Write |
iot:CreateFleetMetric | Write |
iot:CreateJob | Write |
iot:CreateJobTemplate | Write |
iot:CreateKeysAndCertificate | Write |
iot:CreateMitigationAction | Write |
iot:CreateOTAUpdate | Write |
iot:CreatePackage | Write |
iot:CreatePackageVersion | Write |
iot:CreatePolicy | Permissions |
iot:CreatePolicyVersion | Permissions |
iot:CreateProvisioningClaim | Write |
iot:CreateProvisioningTemplate | Write |
iot:CreateProvisioningTemplateVersion | Write |
iot:CreateRoleAlias | Permissions |
iot:CreateScheduledAudit | Write |
iot:CreateSecurityProfile | Write |
iot:CreateStream | Write |
iot:CreateThing | Write |
iot:CreateThingGroup | Write |
iot:CreateThingType | Write |
iot:CreateTopicRule | Write |
iot:CreateTopicRuleDestination | Write |
iot:DeleteAccountAuditConfiguration | Write |
iot:DeleteAuditSuppression | Write |
iot:DeleteAuthorizer | Write |
iot:DeleteBillingGroup | Write |
iot:DeleteCACertificate | Write |
iot:DeleteCertificate | Write |
iot:DeleteCertificateProvider | Write |
iot:DeleteCommand | Write |
iot:DeleteCommandExecution | Write |
iot:DeleteConnection | Write |
iot:DeleteCustomMetric | Write |
iot:DeleteDimension | Write |
iot:DeleteDomainConfiguration | Write |
iot:DeleteDynamicThingGroup | Write |
iot:DeleteFleetMetric | Write |
iot:DeleteJob | Write |
iot:DeleteJobExecution | Write |
iot:DeleteJobTemplate | Write |
iot:DeleteMitigationAction | Write |
iot:DeleteOTAUpdate | Write |
iot:DeletePackage | Write |
iot:DeletePackageVersion | Write |
iot:DeletePolicy | Permissions |
iot:DeletePolicyVersion | Permissions |
iot:DeleteProvisioningTemplate | Write |
iot:DeleteProvisioningTemplateVersion | Write |
iot:DeleteRegistrationCode | Write |
iot:DeleteRoleAlias | Permissions |
iot:DeleteScheduledAudit | Write |
iot:DeleteSecurityProfile | Write |
iot:DeleteStream | Write |
iot:DeleteThing | Write |
iot:DeleteThingGroup | Write |
iot:DeleteThingShadow | Write |
iot:DeleteThingType | Write |
iot:DeleteTopicRule | Write |
iot:DeleteTopicRuleDestination | Write |
iot:DeleteV2LoggingLevel | Write |
iot:DeprecateThingType | Read |
iot:DescribeAccountAuditConfiguration | Read |
iot:DescribeAuditFinding | Read |
iot:DescribeAuditMitigationActionsTask | Read |
iot:DescribeAuditSuppression | Read |
iot:DescribeAuditTask | Read |
iot:DescribeAuthorizer | Read |
iot:DescribeBillingGroup | Read |
iot:DescribeCACertificate | Read |
iot:DescribeCertificate | Read |
iot:DescribeCertificateProvider | Read |
iot:DescribeCustomMetric | Read |
iot:DescribeDefaultAuthorizer | Read |
iot:DescribeDetectMitigationActionsTask | Read |
iot:DescribeDimension | Read |
iot:DescribeDomainConfiguration | Read |
iot:DescribeEncryptionConfiguration | Read |
iot:DescribeEndpoint | Read |
iot:DescribeEventConfigurations | Read |
iot:DescribeFleetMetric | Read |
iot:DescribeIndex | Read |
iot:DescribeJob | Read |
iot:DescribeJobExecution | Read |
iot:DescribeJobTemplate | Read |
iot:DescribeManagedJobTemplate | Read |
iot:DescribeMitigationAction | Read |
iot:DescribeProvisioningTemplate | Read |
iot:DescribeProvisioningTemplateVersion | Read |
iot:DescribeRoleAlias | Permissions |
iot:DescribeScheduledAudit | Read |
iot:DescribeSecurityProfile | Read |
iot:DescribeStream | Read |
iot:DescribeThing | Read |
iot:DescribeThingGroup | Read |
iot:DescribeThingRegistrationTask | Read |
iot:DescribeThingType | Read |
iot:DescribeTunnel | Read |
iot:DetachPolicy | Permissions |
iot:DetachPrincipalPolicy | Permissions |
iot:DetachSecurityProfile | Write |
iot:DetachThingPrincipal | Write |
iot:DisableTopicRule | Write |
iot:DisassociateSbomFromPackageVersion | Write |
iot:EnableTopicRule | Write |
iot:GetBehaviorModelTrainingSummaries | Read |
iot:GetBucketsAggregation | Read |
iot:GetCardinality | Read |
iot:GetCommand | Read |
iot:GetCommandExecution | Read |
iot:GetEffectivePolicies | Read |
iot:GetIndexingConfiguration | Read |
iot:GetJobDocument | Read |
iot:GetLoggingOptions | Read |
iot:GetOTAUpdate | Read |
iot:GetPackage | Read |
iot:GetPackageConfiguration | Read |
iot:GetPackageVersion | Read |
iot:GetPercentiles | Read |
iot:GetPolicy | Permissions |
iot:GetPolicyVersion | Permissions |
iot:GetRegistrationCode | Read |
iot:GetRetainedMessage | Read |
iot:GetStatistics | Read |
iot:GetThingConnectivityData | Read |
iot:GetThingShadow | Read |
iot:GetTopicRule | Read |
iot:GetTopicRuleDestination | Read |
iot:GetV2LoggingOptions | Read |
iot:ListActiveViolations | List |
iot:ListAttachedPolicies | List |
iot:ListAuditFindings | List |
iot:ListAuditMitigationActionsExecutions | List |
iot:ListAuditMitigationActionsTasks | List |
iot:ListAuditSuppressions | List |
iot:ListAuditTasks | List |
iot:ListAuthorizers | List |
iot:ListBillingGroups | List |
iot:ListCACertificates | List |
iot:ListCertificateProviders | List |
iot:ListCertificates | List |
iot:ListCertificatesByCA | List |
iot:ListCommandExecutions | List |
iot:ListCommands | List |
iot:ListCustomMetrics | List |
iot:ListDetectMitigationActionsExecutions | List |
iot:ListDetectMitigationActionsTasks | List |
iot:ListDimensions | List |
iot:ListDomainConfigurations | List |
iot:ListFleetMetrics | List |
iot:ListIndices | List |
iot:ListJobExecutionsForJob | List |
iot:ListJobExecutionsForThing | List |
iot:ListJobs | List |
iot:ListJobTemplates | List |
iot:ListManagedJobTemplates | List |
iot:ListMetricValues | List |
iot:ListMitigationActions | List |
iot:ListNamedShadowsForThing | List |
iot:ListOTAUpdates | List |
iot:ListOutgoingCertificates | List |
iot:ListPackages | List |
iot:ListPackageVersions | List |
iot:ListPolicies | List |
iot:ListPolicyPrincipals | Permissions |
iot:ListPolicyVersions | Permissions |
iot:ListPrincipalPolicies | List |
iot:ListPrincipalThings | List |
iot:ListPrincipalThingsV2 | List |
iot:ListProvisioningTemplates | List |
iot:ListProvisioningTemplateVersions | List |
iot:ListRelatedResourcesForAuditFinding | List |
iot:ListRetainedMessages | List |
iot:ListRoleAliases | Permissions |
iot:ListSbomValidationResults | List |
iot:ListScheduledAudits | List |
iot:ListSecurityProfiles | List |
iot:ListSecurityProfilesForTarget | List |
iot:ListStreams | List |
iot:ListTagsForResource | Tagging |
iot:ListTargetsForPolicy | Permissions |
iot:ListTargetsForSecurityProfile | List |
iot:ListThingGroups | List |
iot:ListThingGroupsForThing | List |
iot:ListThingPrincipals | List |
iot:ListThingPrincipalsV2 | List |
iot:ListThingRegistrationTaskReports | List |
iot:ListThingRegistrationTasks | List |
iot:ListThings | List |
iot:ListThingsInBillingGroup | List |
iot:ListThingsInThingGroup | List |
iot:ListThingTypes | List |
iot:ListTopicRuleDestinations | List |
iot:ListTopicRules | List |
iot:ListTunnels | List |
iot:ListV2LoggingLevels | List |
iot:ListViolationEvents | List |
iot:OpenTunnel | Read |
iot:Publish | Write |
iot:PutVerificationStateOnViolation | Write |
iot:Receive | Read |
iot:RegisterCACertificate | Write |
iot:RegisterCertificate | Write |
iot:RegisterCertificateWithoutCA | Write |
iot:RegisterThing | Write |
iot:RejectCertificateTransfer | Write |
iot:RemoveThingFromBillingGroup | Write |
iot:RemoveThingFromThingGroup | Write |
iot:ReplaceTopicRule | Read |
iot:RetainPublish | Read |
iot:RotateTunnelAccessToken | Write |
iot:SearchIndex | List |
iot:SetDefaultAuthorizer | Write |
iot:SetDefaultPolicyVersion | Permissions |
iot:SetLoggingOptions | Write |
iot:SetV2LoggingLevel | Write |
iot:SetV2LoggingOptions | Write |
iot:StartAuditMitigationActionsTask | Write |
iot:StartCommandExecution | Write |
iot:StartDetectMitigationActionsTask | Write |
iot:StartOnDemandAuditTask | Write |
iot:StartThingRegistrationTask | Write |
iot:StopThingRegistrationTask | Write |
iot:Subscribe | Read |
iot:TagResource | Tagging |
iot:TestAuthorization | Read |
iot:TestInvokeAuthorizer | Read |
iot:TransferCertificate | Read |
iot:UntagResource | Tagging |
iot:UpdateAccountAuditConfiguration | Write |
iot:UpdateAuditSuppression | Write |
iot:UpdateAuthorizer | Write |
iot:UpdateBillingGroup | Write |
iot:UpdateCACertificate | Write |
iot:UpdateCertificate | Write |
iot:UpdateCertificateProvider | Write |
iot:UpdateCommand | Write |
iot:UpdateCustomMetric | Write |
iot:UpdateDimension | Write |
iot:UpdateDomainConfiguration | Write |
iot:UpdateDynamicThingGroup | Write |
iot:UpdateEncryptionConfiguration | Write |
iot:UpdateEventConfigurations | Write |
iot:UpdateFleetMetric | Write |
iot:UpdateIndexingConfiguration | Write |
iot:UpdateJob | Write |
iot:UpdateMitigationAction | Write |
iot:UpdatePackage | Write |
iot:UpdatePackageConfiguration | Write |
iot:UpdatePackageVersion | Write |
iot:UpdateProvisioningTemplate | Write |
iot:UpdateRoleAlias | Permissions |
iot:UpdateScheduledAudit | Write |
iot:UpdateSecurityProfile | Write |
iot:UpdateStream | Write |
iot:UpdateThing | Write |
iot:UpdateThingGroup | Write |
iot:UpdateThingGroupsForThing | Write |
iot:UpdateThingShadow | Write |
iot:UpdateThingType | Write |
iot:UpdateTopicRuleDestination | Write |
iot:ValidateSecurityProfileBehaviors | Read |
Resource Types
ARN patterns for resources in this service.
| Resource | ARN Pattern |
|---|---|
${Type} | arn:aws:iot:${Region}:${Account}:${Type}/${Name} |
Condition Keys
Condition keys you can use in IAM policy conditions for this service.
aws:RequestTag/${TagKey}aws:ResourceTag/${TagKey}aws:TagKeysiot:ClientModeiot:CommandExecutionParameterBoolean/${CommandParameterName}iot:CommandExecutionParameterNumber/${CommandParameterName}iot:CommandExecutionParameterString/${CommandParameterName}iot:Deleteiot:DomainNameiot:ThingGroupArniot:TunnelDestinationServiceiot:thingArnLearn AWS the Practical Way
Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.
Subscribe to NewsletterLearn AWS the Practical Way
Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.
Subscribe to NewsletterQuick Facts
Total Actions290
Prefix
iotResource Types1
Condition Keys12
Access Level Breakdown
Read70
Write134
List64
Permissions19
Tagging3