Posted On: Nov 15, 2018

Now, AWS Identity and Access Management (IAM) makes it easier for you to manage your IAM resources by enabling you to add tags to your IAM users and roles (also known as IAM principals). These tags allow you to add customizable key-value pairs to resources, providing better resource management for AWS services that support tagging of AWS resources. 

You can use tags to add custom attributes such as project and cost center to your IAM principals. Additionally, tags on IAM principals simplify permissions management. For example, you can author a policy that allows a user to assume roles with a specific project tag. As you add the project tag to roles, users gain permissions to assume those roles automatically. To learn more about how to add tags to IAM users and roles, please visit Tagging IAM Identities.