# IAM Group

## Resource Type

`AWS.IAM.Group`

## Resource ID Format

For IAM Groups, the resource ID is the ARN.

`arn:aws:iam::123456789012:group/example-group`

## Background

An IAM group is a collection of IAM users. Groups let you specify permissions for multiple users, which can make it easier to manage the permissions for those users.

## Fields

| Field                | Type     | Description                                                             |
| -------------------- | -------- | ----------------------------------------------------------------------- |
| `Users`              | `List`   | The IAM User members of the group                                       |
| `InlinePolicies`     | `Map`    | A mapping of inline policies keyed by PolicyName to the Policy Document |
| `ManagedPolicyARNs`  | List     | The AWS Managed Policy ARNs attached to the group                       |
| `ManagedPolicyNames` | `List`   | The AWS Managed Policy names attached to the group                      |
| `Path`               | `String` | The path to the group                                                   |

## Example

```javascript
{
    "AccountId": "123456789012",
    "Arn": "arn:aws:iam::123456789012:group/example-group",
    "Id": "111",
    "InlinePolicies": null,
    "ManagedPolicyARNs": [
        "arn:aws:iam::aws:policy/IAMUserChangePassword"
    ],
    "Name": "example-group",
    "Path": "/",
    "Region": "global",
    "ResourceId": "arn:aws:iam::123456789012:group/example-group",
    "ResourceType": "AWS.IAM.Group",
    "Tags": null,
    "TimeCreated": "2019-01-01T00:00:00.000Z",
    "Users": [
        {
            "Arn": "arn:aws:iam::123456789012:user/example-user",
            "CreateDate": "2019-01-01T00:00:00Z",
            "PasswordLastUsed": "2019-01-01T00:00:00Z",
            "Path": "/",
            "PermissionsBoundary": null,
            "Tags": null,
            "UserId": "2222",
            "UserName": "example-user"
        }
    ]
}
```


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.panther.com/cloud-scanning/cloud-resource-attributes/aws/iam-group.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.