Amazon ECS adds support for additional IAM condition keys
News
Amazon ECS has introduced 8 new service-specific IAM condition keys to enhance access control and policy enforcement for containerized environments.
- New condition keys cover resource configuration, container privileges, network settings, and tag propagation
- Specific keys include ecs:task-cpu, ecs:task-memory, ecs:compute-compatibility, ecs:privileged, and others
- Allows creation of more granular IAM policies and Service Control Policies (SCPs)
- Enables enforcement of policies like preventing public IP assignments for tasks
- Prevents registration of task definitions with excessive host privileges
- Available in all AWS Regions
These new condition keys provide enhanced security and control for organizations managing containerized applications on Amazon ECS.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Sep 30
2025
2025
AWS Transfer Family adds support for additional IAM condition keys
Apr 20
2026
2026
Amazon EKS enhances cluster governance with new IAM condition keys
May 19
2025
2025
AWS CodeBuild adds support for new IAM condition keys
Sep 4
2025
2025
AWS adds support for three new condition keys to govern API keys for Amazon Bedrock
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.