AWS Direct Connect Now Supports Resource Based Authorization, Tag Based Authorization, and Tag on Resource Creation

Posted on: Jul 17, 2019

AWS Direct Connect is a cloud service solution that makes it easy to establish a dedicated network connection from your premises to AWS. Using AWS Direct Connect, you can establish private connectivity between AWS and your data center, office, or colocation environment, which in many cases can reduce your network costs, increase bandwidth throughput, and provide a more consistent network experience than Internet-based connections. 

AWS Direct Connect now supports resource based authorization, tag based authorization, and tag on resource creation.  

You can now define AWS Identity and Access Management (IAM) policies to specify fine-grained permissions for AWS Direct Connect Dedicated and Hosted connection(s), Interconnects, Link Aggregation Groups, virtual interfaces, Direct Connect gateways based on resource names and tags, improving the security through these two granular access control features.

With resource-level authorization, you can configure IAM policies that reference AWS Direct Connect Dedicated and Hosted connection(s), Interconnects, Link Aggregation Groups, virtual interfaces, Direct Connect gateways using Amazon Resource Names (ARNs) or wildcards, and specify the users and actions that are permitted on the resources. 

Using tag-based permissions, you can define IAM policies that specify permissions for tagged AWS Direct Connect Dedicated and Hosted connection(s), Interconnects, Link Aggregation Groups, virtual interfaces. For example, you can tag a Dedicated connection based on business units and limit control over those resources to the members of that business unit.  

Using tag on resource creation, you can tag AWS Direct Connect Dedicated and Hosted connection(s), Interconnects, Link Aggregation Groups, virtual interfaces resources at the time of creation. When new resources are created with tags, the corresponding IAM permissions are automatically applied. 

To learn more, see Tagging AWS Direct Connect Resources in the AWS Direct Connect User Guide.

Visit our Getting Started page. Sign in to your AWS Management Console to order AWS Direct Connect today!