AWS Security Blog
Announcement: Resource Permissions for additional EC2 API actions
Yesterday AWS announced that it now supports resource-level permissions for seven additional EC2 APIs, including:
- DeleteNetworkAcl
- DeleteNetworkAclEntry
- DeleteRoute
- DeleteRouteTable
- DeleteDhcpOptions
- DeleteInternetGateway
- DeleteCustomerGateway
As with other EC2 API actions that support resource-level permissions, you can also construct policies based on the tags associated with the resources. To learn more, go to either our recent post on resource level permissions or the Amazon EC2 User Guide.
– Ben