Your organization has around 50 IAM users. Now, it wants to introduce a new policy that will affect the access permissions of an IAM user. How can it implement this without having to apply the policy at the individual user level?
It is possible using IAM groups, by adding users in the groups as per their roles and by simply applying the policy to the groups.