Posted On: Jul 13, 2018
Today, we released a new Amazon Identity & Access Management (IAM) feature that makes it easier for you to delegate IAM permissions management to trusted employees.
IAM policies enable you to grant employees and applications access to Amazon Web Services services, actions, and resources. As your organization grows, you might want to allow trusted employees to configure and manage IAM permissions to help your organization scale permission management tasks and move workloads to Amazon Web Services faster. For example, you might want to grant a developer the ability to create and manage permissions for an IAM role required to run an application on Amazon EC2. Now, you can set a permissions boundary to control the maximum permissions employees can grant to the IAM principals (users and roles) that they create and manage.
Amazon IAM is a global service and this new feature is available in all Amazon Web Services regions, including Amazon Web Services China (Ningxia) region operated by NWCD and Amazon Web Services China (Beijing) region operated by Sinnet. Learn more about Amazon IAM by reading the Amazon IAM documentation.