2025 08 28

AWS – OpenSearch Serverless now supports Attribute Based Access Control (ABAC) for Data Plane APIs and Resource control policy

Amazon OpenSearch Serverless has added support for attribute-based authorization (ABAC) for Data Plane APIs, making it easier to manage access control for data read and write operations. This feature is part of an AWS campaign to drive consistent adoption of AWS Identity and Access Management (IAM) features across all AWS services. Customers can use identity policies in IAM to define permissions and control who has access to the data on Amazon OpenSearch Serverless collections.

Amazon OpenSearch Serverless now also supports resource control policy (RCP). RCP is a new type of authorization policy managed in AWS Organizations that will allow OpenSearch Serverless customers to enforce organization-wide preventative controls across resources in their organization centrally, without the need to update individual resource-based policies. You can refer to documentation for examples.

Please refer to the AWS Regional Services List for more information about Amazon OpenSearch Service availability. To learn more about OpenSearch Serverless, see the documentation.

AWS – OpenSearch Serverless now supports Attribute Based Access Control (ABAC) for Data Plane APIs and Resource control policy

Related Posts

AWS – Amazon Q Developer now supports MCP admin control

AWS – AWS HealthOmics now supports task level timeout controls for Nextflow workflows

AWS – Amazon EBS launches snapshot copy for AWS Local Zones