Posted On: Jun 12, 2023
AWS GovCloud (US) Regions are designed to host sensitive data, regulated workloads, and address the most stringent U.S. government security and compliance requirements. With today’s release, Route 53 now enables customers in the AWS GovCloud (US-East and US-West) Regions to define AWS Identity and Access Management (IAM) create, edit, and delete policies for individual or groups of DNS record sets within a Route 53 private hosted zone.
Route 53 DNS resource record set permissions give individual DNS administrators direct ownership at the resource record set level. This can help customers reduce reliance on a central team to manage changes for each resource record set on behalf of multiple other teams, potentially saving time and reducing operational risks. To accommodate a broad range of use cases, you can specify permissions for individual resource record sets, for all resource record sets of a specific record type, such as A, MX, or CNAME, and for resource record sets matching a specified domain name prefix string.
For further information about how to use this feature, please visit Resource record set permissions in the Route 53 documentation and Getting started with IAM in the IAM documentation.