AmazonSageMakerTrainingPlanCreateAccess AmazonSageMakerCapacityReservationServiceRolePolicy SageMaker training plans policy updates

AWS managed policies for SageMaker training plans

This AWS managed policy grants permissions needed to create and manage Amazon SageMaker training plans and Reserved Capacity in SageMaker AI. The policy can be attached to IAM roles used for creating and managing training plans and reserved capacity within SageMaker AI including your SageMaker AI execution role.

Topics

AWS managed policy: AmazonSageMakerTrainingPlanCreateAccess
AWS managed policy: AmazonSageMakerCapacityReservationServiceRolePolicy
Amazon SageMaker AI updates to SageMaker training plans managed policies

AWS managed policy: AmazonSageMakerTrainingPlanCreateAccess

This policy provides the necessary permissions to create, describe, search for, and list training plans in SageMaker AI. Additionally, it also allows adding tags to training plans and reserved capacity resources under specific conditions.

Permissions details

This policy includes the following permissions.

sagemaker – Create training plans and reserved capacity, permits adding tags to training plans and reserved capacity when the tagging action is specifically CreateTrainingPlan or CreateReservedCapacity, allows describing training plans, permits searching for training plan offerings and listing existing training plans on all resources.

AWS managed policy: AmazonSageMakerCapacityReservationServiceRolePolicy

This policy is used by the service-linked role named AWSServiceRoleForSageMakerCapacityReservation to publish CloudWatch metrics for Reserved Capacity utilization into customer accounts. The service-linked role is created by the service principal capacityreservation.sagemaker.amazonaws.com.

Note

This is a service-linked role policy. You cannot attach this policy to your IAM identities. SageMaker AI creates this policy and attaches it to a service-linked role that allows SageMaker AI to perform actions on your behalf.

Permissions details

This policy includes the following permissions.

cloudwatch – Allows publishing metric data to CloudWatch. This permission is scoped to the aws/sagemaker/CapacityReservations namespace using a condition key.


{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "CloudwatchPutMetricDataAccess",
            "Effect": "Allow",
            "Action": [
                "cloudwatch:PutMetricData"
            ],
            "Resource": [
                "*"
            ],
            "Condition": {
                "StringEquals": {
                    "cloudwatch:namespace": "aws/sagemaker/CapacityReservations"
                }
            }
        }
    ]
}

For more information, see AmazonSageMakerCapacityReservationServiceRolePolicy in the AWS Managed Policy Reference Guide.

Amazon SageMaker AI updates to SageMaker training plans managed policies

View details about updates to AWS managed policies for Amazon SageMaker AI since this service began tracking these changes.

Policy	Version	Change	Date
AmazonSageMakerCapacityReservationServiceRolePolicy – New policy	1	Initial policy	March 5, 2026
AmazonSageMakerTrainingPlanCreateAccess - updated policy	2	Updated policy to add permissions to retrieve information about a specific reserved capacity and list all UltraServers in a reserved capacity.	July 29, 2024
AmazonSageMakerTrainingPlanCreateAccess - New policy	1	Initial policy	December 4, 2024

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

SageMaker Pipelines

SageMaker Projects and JumpStart