AWS Identity and Access Management

2020/01/23 - 2 updated api methods

Changes   This release enables the Identity and Access Management policy simulator to simulate permissions boundary policies.

2019/11/19 - 10 updated api methods

Changes   IAM reports the timestamp when a role's credentials were last used to make an AWS request. This helps you identify unused roles and remove them confidently from your AWS accounts.

2019/06/21 - 2 new api methods

Changes   We are making it easier for you to manage your permission guardrails i.e. service control policies by enabling you to retrieve the last timestamp when an AWS service was accessed within an account or AWS Organizations entity.

2019/04/26 - 1 new api methods

Changes   AWS Security Token Service (STS) enables you to request session tokens from the global STS endpoint that work in all AWS Regions. You can configure the global STS endpoint to vend session tokens that are compatible with all AWS Regions using the new IAM SetSecurityTokenServicePreferences API.

2018/12/07 - 4 new api methods

Changes   We are making it easier for you to manage your AWS Identity and Access Management (IAM) policy permissions by enabling you to retrieve the last timestamp when an IAM entity (e.g., user, role, or a group) accessed an AWS service. This feature also allows you to audit service access for your entities.

2018/11/16 - 6 new 16 updated api methods

Changes   We are making it easier for you to manage your AWS Identity and Access Management (IAM) resources by enabling you to add tags to your IAM principals (users and roles). Adding tags on IAM principals will enable you to write fewer policies for permissions management and make policies easier to comprehend. Additionally, tags will also make it easier for you to grant access to AWS resources.

2018/07/12 - 4 new 20 updated api methods

Changes   SDK release to support IAM delegated administrator feature. The feature lets customers attach permissions boundary to IAM principals. The IAM principals cannot operate exceeding the permission specified in permissions boundary.

2018/03/28 - 1 new 10 updated api methods

Changes   Add support for Longer Role Sessions. Four APIs manage max session duration: GetRole, ListRoles, CreateRole, and the new API UpdateRole. The max session duration integer attribute is measured in seconds.

2017/09/18 - 2 new api methods

Changes   A new API, DeleteServiceLinkedRole, submits a service-linked role deletion request and returns a DeletionTaskId, which you can use to check the status of the deletion.

2017/04/19 - 2 new 8 updated api methods

Changes   This changes introduces a new IAM role type, Service Linked Role, which works like a normal role but must be managed via services' control.

2017/02/27 - 2 updated api methods

Changes   This release adds support for AWS Organizations service control policies (SCPs) to SimulatePrincipalPolicy operation. If there are SCPs associated with the simulated user's account, their effect on the result is captured in the OrganizationDecisionDetail element in the EvaluationResult.

2016/12/22 - 5 new api methods

Changes   Adds service-specific credentials to IAM service to make it easier to onboard CodeCommit customers. These are username/password credentials that work with a single service.