AWS Elastic File System (IAM)

aws storage

A scalable, elastic, cloud-native NFS file system for use with AWS Cloud services and on-premises resources.

Common permissions

elasticfilesystem:DescribeFileSystemselasticfilesystem:DescribeMountTargetselasticfilesystem:DescribeAccessPointselasticfilesystem:DescribeBackupPolicyelasticfilesystem:DescribeLifecycleConfigurationelasticfilesystem:ListTagsForResourceelasticfilesystem:DescribeTags

Least-privilege example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "elasticfilesystem:DescribeFileSystems",
        "elasticfilesystem:DescribeMountTargets",
        "elasticfilesystem:DescribeAccessPoints",
        "elasticfilesystem:DescribeBackupPolicy",
        "elasticfilesystem:DescribeLifecycleConfiguration",
        "elasticfilesystem:ListTagsForResource",
        "elasticfilesystem:DescribeTags"
      ],
      "Resource": "*"
    }
  ]
}

Warnings

Avoid elasticfilesystem:* — grants full control including creating, modifying, and deleting file systems and data.
Avoid elasticfilesystem:DeleteFileSystem — allows deletion of file systems, causing permanent data loss.

Resources

AWS referenceservicereference.us-east-1.amazonaws.com/v1/elasticfilesystem/elasticfilesystem.json ↗

API

full doc /v1/iam/elasticfilesystem