AWS IAM now provides higher maximum quotas for roles, role trust policies, instance profiles, managed policies, and identity providers
AWS Identity and Access Management (IAM) has increased maximum quotas for six resources:
- Customer managed policies per account (5,000 to 10,000)
- Instance profiles per account (5,000 to 10,000)
- Managed policies per role (20 to 25)
- Role trust policy length (4,096 to 8,192 characters)
- Roles per account (5,000 to 10,000)
- OpenId connect providers per account (100 to 700)
These updates address common scaling constraints customers encounter as their AWS environments grow. With these higher maximum quotas, customers have more flexibility to customize IAM controls and support additional workloads that require creation of IAM resources.
Customers can view the latest IAM quotas in the IAM and AWS STS quotas documentation. To request quota increases for accounts in AWS commercial regions, use Service Quotas in US East (N. Virginia). In AWS GovCloud (US) and China Regions, customers can request increases through AWS Support. For more information, see Requesting a Quota Increase in the Service Quotas User Guide.