Figure 3: I’ve attached a managed policy (one that AWS looks after on my behalf but that I can’t edit without duplicating and renaming) to the role I called AutomationRole.
