Final answer:
An IAM Role contains a Permissions Policy that grants specific actions on AWS resources and a Trust Policy that specifies which entities are allowed to assume the role.
Step-by-step explanation:
An IAM Role is an Amazon Web Services (AWS) identity with permission policies that determine what the identity can and cannot do in AWS. When you create an IAM Role, two main policies are assigned to it: the Permissions Policy and the Trust Policy.
The Permissions Policy defines the actions that can be performed on resources within AWS. These policies are attached to the role itself and are used to grant necessary permissions for various AWS services and resources.
The Trust Policy is distinct from the permissions policy. It specifies which principal entities (such as IAM users, other IAM roles, or AWS services) are allowed to assume the role. In other words, the trust policy defines who can use the role and, in some cases, under which conditions they can use it.