File: //proc/self/root/usr/local/aws-cli/v2/dist/awscli/examples/iot/create-policy-version.rst
**To update a policy with a new version**
The following ``create-policy-version`` example updates a policy definition, creating a new policy version. This example also makes the new version the default. ::
    aws iot create-policy-version \
        --policy-name UpdateDeviceCertPolicy \
        --policy-document file://policy.json \
        --set-as-default
Contents of ``policy.json``::
    {
        "Version": "2012-10-17", 
        "Statement": [
            { 
                "Effect": "Allow", 
                "Action":  "iot:UpdateCertificate",
                "Resource": "*" 
            } 
        ] 
    }
Output::
    {
        "policyArn": "arn:aws:iot:us-west-2:123456789012:policy/UpdateDeviceCertPolicy",
        "policyDocument": "{ \"Version\": \"2012-10-17\", \"Statement\": [ { \"Effect\": \"Allow\", \"Action\":  \"iot:UpdateCertificate\", \"Resource\": \"*\" } ] }",
        "policyVersionId": "2",
        "isDefaultVersion": true
    }
For more information, see `AWS IoT Policies <https://docs.aws.amazon.com/iot/latest/developerguide/iot-policies.html>`__ in the *AWS IoT Developers Guide*.