Contact UsTry it for free
© 2026 Direct Cursus Technology L.L.C.

Viewing assigned access policies

Written by
Updated at February 25, 2026

Note

This feature is in the Preview stage. To get access, contact tech support or your account manager.

Access policies are a Yandex Identity and Access Management mechanism that allows you to manage permissions for specific operations with Yandex Cloud resources. Access policies complement the role system for more flexible access management.

You can assign access policies for a folder, cloud, or organization.

Note

To manage access policies, a user must have one of the following roles:

Viewing access policies assigned for a folder

To view the list of access policies assigned for a folder:

If you do not have the Yandex Cloud CLI installed yet, install and initialize it.

Run the command, specifying the name or ID of the folder for which you want to view the assigned policies:

yc resource-manager folder list-access-policy-bindings <folder_name_or_ID>

Result:

+---------------------------------------+
|      ACCESS POLICY TEMPLATE ID        |
+---------------------------------------+
| iam.denyServiceAccountApiKeysCreation |
+---------------------------------------+

Use the listAccessPolicyBindings REST API method for the Folder resource or the FolderService/ListAccessPolicyBindings gRPC API call.

Viewing access policies assigned for a cloud

To view the list of access policies assigned for a cloud:

If you do not have the Yandex Cloud CLI installed yet, install and initialize it.

Run the command, specifying the name or ID of the cloud for which you want to view the assigned policies:

yc resource-manager cloud list-access-policy-bindings <cloud_name_or_ID>

Result:

+---------------------------------------+
|      ACCESS POLICY TEMPLATE ID        |
+---------------------------------------+
| iam.denyServiceAccountApiKeysCreation |
+---------------------------------------+

Use the listAccessPolicyBindings REST API method for the Cloud resource or the CloudService/ListAccessPolicyBindings gRPC API call.

Viewing access policies assigned for an organization

To view the list of access policies assigned for an organization:

If you do not have the Yandex Cloud CLI installed yet, install and initialize it.

Run the command, specifying the name or ID of the organization for which you want to view the assigned policies:

yc organization-manager organization list-access-policy-bindings <organization_name_or_ID>

Result:

+------------------------------+
|  ACCESS POLICY TEMPLATE ID   |
+------------------------------+
| organization.denyUserListing |
+------------------------------+

Use the listAccessPolicyBindings REST API method for the Organization resource or the OrganizationService/ListAccessPolicyBindings gRPC API call.

See also

Previous
Assigning a policy for a resource
Next
Revoking a policy