Help Center/ Identity and Access Management/ FAQs/ User Groups and Permissions Management/ What Should I Do If an IAM User Does Not Have the Required Permissions to Access the IAM Console?
Updated on 2024-12-25 GMT+08:00

What Should I Do If an IAM User Does Not Have the Required Permissions to Access the IAM Console?

Symptom

When an IAM user attempts to access the IAM console, a message is displayed indicating that the user does not have the required permissions to access IAM.

Possible Cause

IAM users do not have any permissions assigned by default. If an IAM user is not assigned the required permissions to access IAM, the access is denied.

Solution

To assign permissions to an IAM user for accessing and performing operations on the IAM console, create a user group, assign IAM permissions to the group, and add the IAM user to the group. Then the user inherits permissions from the group and can access the IAM console.

  1. Create a user group and assign permissions to it.

    • For details about IAM system-defined permissions, see Permissions.
    • For details about IAM actions, see Actions.

  2. Add the IAM user to the user group created in the previous step.
  3. Log in to the console as the IAM user and access the IAM console.