Amazon S3 Access Grants simplify authentication when using both IAM and Identity Provider permissions
News
Amazon has enhanced S3 Access Grants to provide more flexible and simplified authentication by combining Identity Provider (IdP) and AWS IAM permissions.
- Now supports evaluating both IdP and IAM permissions simultaneously
- Enables access for AWS machine learning and analytics services like SageMaker, Redshift, and Glue
- Allows mapping S3 permissions to users and groups in corporate directories like Entra ID and Okta
- Automatically updates S3 permissions based on user group membership changes
- Available in all AWS Regions with IAM Identity Center support
This update simplifies data access management by removing the need to choose between different identity contexts when requesting S3 access.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Nov 21
2025
2025
Amazon S3 now supports attribute-based access control
Jul 12
2024
2024
AWS Identity and Access Management simplifies management of OpenID Connect identity providers
Nov 21
2025
2025
Introducing attribute-based access control for Amazon S3 general purpose buckets
Dec 3
2024
2024
Amazon S3 Access Grants now integrate with AWS Glue
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.