AWS Identity and Access Management
User Guide

Managing IAM Roles

Occasionally you need to modify or delete the roles that you have created. To change a role, you can do any of the following:

  • Modify the policies that are associated with the role

  • Change who can access the role

  • Edit the permissions that the role grants to users

  • Change the maximum session duration setting for roles that are assumed using the AWS CLI or API

You can also delete roles that are no longer needed. You can manage your roles from the AWS Management Console, the AWS CLI, and the API.