Which of the below mentioned IAM policy statements allows the user to have access to the AWS usage report page?
“Effect”: “Allow”, “Action”: [“Describe”], “Resource”: “Billing”
“Effect”: “Allow”, “Action”: [“aws-portal: ViewBilling”], “Resource”: “*”
“Effect”: “Allow”, “Action”: [“aws-portal: ViewUsage”], “Resource”: “*”
“Effect”: “Allow”, “Action”: [“AccountUsage], “Resource”: “*”
Explanations:
“Describe” is not the correct action for viewing the AWS usage report. The correct action for viewing the usage report isaws-portal: ViewUsage. Additionally, “Billing” is too vague and not specifically related to usage reports.
The action “aws-portal: ViewBilling” is related to billing but not to the usage report specifically. To view the usage report, the user must have “aws-portal: ViewUsage” permission.
The action “aws-portal: ViewUsage” allows the user to view the AWS usage report page. The resource “*” applies correctly here as it grants access to the appropriate AWS usage information.
“AccountUsage” is not a valid action in IAM for viewing the AWS usage report. The correct action for viewing the usage report is “aws-portal: ViewUsage”.
I plan that the answer is:
“Effect”: “Allow”, “Action”: [“aws-portal: ViewUsage”], “Resource”: “*”