Posted On: Apr 7, 2021

Amazon ElastiCache now supports tag-based access control and adding tags to additional cluster resources. By using tags for access control, your Amazon Identity and Access Management (IAM) users, groups, and roles get access only to the Amazon ElastiCache resources with matching tags. This provides you the capability to scale by reducing the number of distinct permissions you need to create and manage in your Amazon Web Services account. You can define Amazon IAM policies that grant or deny access to a resource based on its tags. Furthermore, you can use specific condition context keys to customize your Amazon IAM policies to limit specific behaviors on Amazon ElastiCache resources. For a complete list of condition context keys for Amazon ElastiCache, visit the Amazon ElastiCache documentation.

You can now also tag your Amazon ElastiCache replication groups. When you add or remove tags from your replication groups, Amazon ElastiCache will also add or remove these tags to each node in the group, respectively. For a complete list of resources that can be tagged, visit the Amazon ElastiCache documentation.  

Tag-based access control and tagging Amazon ElastiCache resources is supported in in Amazon Web Services China (Beijing) region, operated by Sinnet and Amazon Web Services China (Ningxia) region, operated by NWCD. You can manage your Amazon IAM polices and manage tags on Amazon ElastiCache resources using the Amazon console, CLI, or SDK. To learn more, visit our Amazon ElastiCache documentation. To get started, visit the Management Console.