Posted On: Mar 23, 2022

AWS Cost Anomaly Detection now supports resource and tag-based access controls for easy management and access to cost anomaly monitors and alert subscriptions. You can now define AWS Identity and Access Management (IAM) policies to specify fine-grained permissions for AWS Cost Anomaly Detection monitors and alert subscriptions based on their resource names and tags, improving governance and information security through these two granular access control features.

With resource-level access controls, you can configure IAM policies that reference AWS Cost Anomaly Detection monitors and alert subscriptions using Amazon Resource Names (ARNs) or wildcards, and specify the users, roles and actions that are permitted on the resources. Using tag-based permissions, you can define IAM policies that specify permissions for tagged AWS Cost Anomaly Detection monitors and alert subscriptions. For example, you can tag a monitor or an alert subscription based on a business unit and limit control over those resources to the members of that business unit.

Resource and tag based access controls for AWS Cost Anomaly Detection is available in all AWS commercial regions, excluding China. You can get started with these new features using the AWS Cost Anomaly Detection console or programmatically via the public APIs at no additional cost. To learn more visit AWS Cost Anomaly Detection and Using Resource and Tag based access control for cost anomaly monitors and subscriptions.