AWS Identity and Access Management (IAM) (iam)

2023-06-24

1 new action, 4 new conditions | 2 updated actions

Additions

    Actions
  • GetMFADevice
    • Description:  Grants permission to retrieve information about an MFA device for the specified user
    • Access:  Read
    • Resources: 

      Name: user

      Required: Yes

    Conditions
  • iam:FIDO-FIPS-140-2-certification
    • Description:  Filters access by the MFA device FIPS-140-2 validation certification level at the time of registration of a FIDO security key
    • Type:  String
  • iam:FIDO-FIPS-140-3-certification
    • Description:  Filters access by the MFA device FIPS-140-3 validation certification level at the time of registration of a FIDO security key
    • Type:  String
  • iam:FIDO-certification
    • Description:  Filters access by the MFA device FIDO certification level at the time of registration of a FIDO security key
    • Type:  String
  • iam:RegisterSecurityKey
    • Description:  Filters access by the current state of MFA device enablement
    • Type:  String

Updates

    Actions
  • EnableMFADevice
      Conditions
    • + iam:RegisterSecurityKey
    • + iam:FIDO-FIPS-140-2-certification
    • + iam:FIDO-FIPS-140-3-certification
    • + iam:FIDO-certification
  • ListInstanceProfiles
      Resources
    • - instance-profile