Posted On: Nov 2, 2023

AWS Identity and Access Management (IAM) now provides action last accessed information for more than 60 additional services to help you refine the permissions of your IAM roles. You can use action last accessed information to identify unused permissions and refine the access of your IAM roles to only the actions they use. With this release, you can review action last accessed information for services such as AWS Auto Scaling, Amazon Redshift, and Amazon Route 53 to better adhere to the best practice of least privilege.

Last accessed information is available in all AWS Regions where the corresponding AWS services are supported, including the AWS GovCloud (US) Regions. To view a complete list of the services and their actions that report last accessed information, see IAM last accessed information services and actions.

To learn more about action last accessed, see Refining permissions in AWS using last accessed information in the IAM User Guide. To get started using action last accessed information, navigate to the Access Advisor tab of any of your IAM resources in the IAM console.