Posted On: Nov 15, 2024
Today, Amazon Identity and Access Management (IAM) is launching a new capability allowing customers to perform privileged tasks across their Amazon Web Services member accounts managed using Amazon Organizations. Accounts in the Amazon Web Services China (Beijing) Region, operated by Sinnet and the Amazon Web Services China (Ningxia) Region, operated by NWCD do not have privileged root user credentials, so customers had to contact Amazon Web Services Support if they needed to perform tasks that required these privileges, such as unlocking an S3 bucket that denied all access.
Now, customers can use IAM to access their member accounts and perform tightly scoped privileged tasks using temporary credentials. This reduces operational effort required by administrators and makes it easier for them to secure their Amazon Web Services environment.
To get started performing privileged tasks centrally using IAM, please see the IAM documentation.