One Cloud Please

Recommendations for Working with IAM - Permissions Boundaries and Conditions

06 May 2021

To celebrate AWS Identity and Access Management (IAM)’s 10th anniversary, I talk about two powerful ways that you can limit access to Amazon Web Services (AWS); Permissions Boundaries and Conditions.

Using permissions boundaries and conditions is an effective way to limit access. By letting you set the maximum permissions for a user or role, permissions boundaries can be used for situations like granting someone limited permissions management abilities.

Conditions enable you to specify when a policy statement is enforced, providing fine-grained access through variables such as tag value, time, and IP address. Using these IAM features will help you in your pursuit of least privilege on AWS.

Read more on the AWS Partner Network Blog by clicking here.