How to fine-tune quicksight user permissions like deny actions

kplee · December 27, 2024, 2:03am

I want to apply a policy to prevent Author from deleting Datasets, but when I apply the deny policy to the quicksight-author-role as shown below, it does not apply.
If there is any other way to control the permissions of Quick Sight, please guide me.

{
“Version”: “2012-10-17”,
“Statement”: [
{
“Sid”: “Statement1”,
“Effect”: “Allow”,
“Action”: [
“quicksight:CreateUser”
],
“Resource”: “"
},
{
“Effect”: “Deny”,
“Action”: “quicksight:DeleteDataSet”,
“Resource”: "”
}
]
}

apjvinod · December 27, 2024, 7:25am

Hi @kplee

Welcome to QuickSIght Community . You can share existing datasets to another Author user ( user-a) with Viewer level permission , to refer and use it and author (user-a) cannot delete/modify the shared dataset .

Thanks
Vinod

Topic		Replies	Views
Using deny permissions in policies associated with quicksight roles in IAM does not deny those permissions in quicksight Q&A admin , error , quick-sight , custom-permissions	5	477	October 17, 2023
Granular permissions Q&A quick-sight , dataset , Business-Intelligence-Engineer	5	79	March 11, 2025
How to Remove Dashboard delete access from Quicksight authors role users? Q&A administration , accessibility , feature-request , quick-sight	1	831	March 23, 2022
How to set the permissions to Dataset/Datasource for all the Quicksight registered users Q&A data-source , quick-sight	2	3297	September 22, 2022
Deny creation of data source Q&A data-source , feature-request , quick-sight	3	386	August 30, 2023

How to fine-tune quicksight user permissions like deny actions

Related topics