Access Analyzer

2021/04/07 - 4 new api methods

Changes   IAM Access Analyzer now analyzes your CloudTrail events to identify actions and services that have been used by an IAM entity (user or role) and generates an IAM policy that is based on that activity.

2021/03/16 - 1 new api methods

Changes   This release adds support for the ValidatePolicy API. IAM Access Analyzer is adding over 100 policy checks and actionable recommendations that help you validate your policies during authoring.

2021/03/10 - 4 new api methods

Changes   This release adds support to preview IAM Access Analyzer findings for a resource before deploying resource permission changes.

2021/01/27 - 4 updated api methods

Changes   This release adds Secrets Manager secrets as a supported resource in IAM Access Analyzer to help you identify secrets that can be accessed from outside your account or AWS organization.

2020/10/15 - 1 new api methods

Changes   This release adds support for the ApplyArchiveRule api in IAM Access Analyzer. The ApplyArchiveRule api allows users to apply an archive rule retroactively to existing findings in an analyzer.

2020/04/27 - 2 updated api methods

Changes   This release adds support for inclusion of S3 Access Point policies in IAM Access Analyzer evaluation of S3 bucket access. IAM Access Analyzer now reports findings for buckets shared through access points and identifies the access point that permits access.

2020/03/30 - 7 updated api methods

Changes   This release adds support for the creation and management of IAM Access Analyzer analyzers with type organization. An analyzer with type organization continuously monitors all supported resources within the AWS organization and reports findings when they allow access from outside the organization.

2019/12/02 - 18 new api methods

Changes   Introducing AWS IAM Access Analyzer, an IAM feature that makes it easy for AWS customers to ensure that their resource-based policies provide only the intended access to resources outside their AWS accounts.