{"slug":"iam-aws-qldb","cloud":"aws","service":"qldb","title":"AWS QLDB (IAM)","description":"Amazon Quantum Ledger Database (QLDB) is a fully managed ledger database that provides a transparent, immutable, and cryptographically verifiable transaction log.","category":"database","common_permissions":["qldb:GetBlock","qldb:GetDigest","qldb:GetRevision","qldb:ListLedgers","qldb:DescribeLedger","qldb:ListTagsForResource","qldb:TagResource"],"least_privilege_example":"{\n  \"Version\": \"2012-10-17\",\n  \"Statement\": [\n    {\n      \"Effect\": \"Allow\",\n      \"Action\": [\n        \"qldb:GetBlock\",\n        \"qldb:GetDigest\",\n        \"qldb:GetRevision\",\n        \"qldb:ListLedgers\",\n        \"qldb:DescribeLedger\",\n        \"qldb:ListTagsForResource\",\n        \"qldb:TagResource\"\n      ],\n      \"Resource\": \"*\"\n    }\n  ]\n}","warnings":["Avoid qldb:* — grants full control including ledger deletion and permission mode changes.","Avoid qldb:DeleteLedger — can permanently remove a ledger and all its immutable data."],"docs":"https://servicereference.us-east-1.amazonaws.com/v1/qldb/qldb.json","tags":["iam","aws"],"last_verified":"2026-06-14T00:00:00.000Z","next_check":"2026-12-11T00:00:00.000Z","created_at":"2026-06-14T04:50:31.668Z","updated_at":"2026-06-14T04:50:31.668Z"}