AWS – Amazon Verified Permissions now supports policy store tagging

Amazon Verified Permissions now enables customers to tag Policy Stores. Tags are simple key-value pairs that customers can assign to AWS resources such as Verified Permissions Policy Stores to manage cost-allocate and control access. This launch enables Verified Permissions customers to use tag-based controls to manage access to policy stores. For example, customers can now tag a policy store for a tenant, and use IAM permissions to restrict to that policy store accordingly. Further, customers can use AWS cost allocation tags to categorize and allocate costs by tenant, team, department or application. Lastly, this launch makes it simpler for customers to search for policy stores within the account through the console.

Amazon Verified Permissions is a scalable permissions management and fine-grained authorization service for the applications that you build. Using Cedar, an expressive and analyzable open-source policy language, developers and admins can define policy-based access controls using roles and attributes for more granular, context-aware access control. For example, a multi-tenant SaaS HR application might use Amazon Verified Permissions to manage user access to tenant specific resources, such as performance evaluations and employee benefits packages. In these cases, a separate policy store might be deployed for each tenant.

This feature is available in all regions where Verified permissions is available. For more information visit the product page.
 

Read More for the details.