{"slug":"iam-aws-servicecatalog","cloud":"aws","service":"servicecatalog","title":"AWS Service Catalog (IAM)","description":"AWS Service Catalog allows organizations to create and manage IT service catalogs of approved AWS resources for end users.","category":"management","common_permissions":["servicecatalog:ListPortfolios","servicecatalog:DescribeProduct","servicecatalog:ListLaunchPaths","servicecatalog:ListApplications","servicecatalog:GetApplication","servicecatalog:DescribeRecord","servicecatalog:ListRecordHistory","servicecatalog:ListTagOptions"],"least_privilege_example":"{\n  \"Version\": \"2012-10-17\",\n  \"Statement\": [\n    {\n      \"Effect\": \"Allow\",\n      \"Action\": [\n        \"servicecatalog:ListPortfolios\",\n        \"servicecatalog:DescribeProduct\",\n        \"servicecatalog:ListLaunchPaths\",\n        \"servicecatalog:ListApplications\",\n        \"servicecatalog:GetApplication\",\n        \"servicecatalog:DescribeRecord\",\n        \"servicecatalog:ListRecordHistory\",\n        \"servicecatalog:ListTagOptions\"\n      ],\n      \"Resource\": \"*\"\n    }\n  ]\n}","warnings":["Avoid servicecatalog:* — grants full control including creating, updating, and deleting portfolios, products, and constraints","Avoid servicecatalog:CreateProduct and servicecatalog:DeleteProduct — can lead to unauthorized provisioning or removal of approved products"],"docs":"https://servicereference.us-east-1.amazonaws.com/v1/servicecatalog/servicecatalog.json","tags":["iam","aws"],"last_verified":"2026-06-14T00:00:00.000Z","next_check":"2026-12-11T00:00:00.000Z","created_at":"2026-06-14T04:51:18.801Z","updated_at":"2026-06-14T04:51:18.801Z"}