AWS Security Blog

Announcement: Resource Permissions for additional EC2 API actions

Yesterday AWS announced that it now supports resource-level permissions for seven additional EC2 APIs, including:

  • DeleteNetworkAcl
  • DeleteNetworkAclEntry
  • DeleteRoute
  • DeleteRouteTable
  • DeleteDhcpOptions
  • DeleteInternetGateway
  • DeleteCustomerGateway

As with other EC2 API actions that support resource-level permissions, you can also construct policies based on the tags associated with the resources.  To learn more, go to either our recent post on resource level permissions or the Amazon EC2 User Guide.

– Ben