Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions,
see Getting Started with Amazon Web Services in China
(PDF).
Edit users in IAM groups
Use IAM groups to apply the same permissions policies across multiple users at once. You
can then add users to or remove users from an IAM group. This is useful as people enter and
leave your organization.
Review policy access
Before you remove a group, use the group details page to review the members
(IAM users) of the group, the policies attached to the group on the
Permissions tab and review recent service-level activity using the
Last Accessed tab. This helps prevent unintentionally removing access
from a principal (person or application) who is using it. For more information about viewing
last accessed information, see Refine permissions in Amazon using last
accessed information.
Add an IAM user to an IAM group
- classic IAM console
-
Sign in to the Amazon Web Services Management Console and open the IAM console at https://console.amazonaws.cn/iam/.
-
In the navigation pane, choose User groups and then choose
the name of the group.
-
Choose the Users tab and then choose Add
users. Select the check box next to the users you want to add.
-
Choose Add users.
- Amazon CLI
-
Run the following command:
- API
-
Call the following operation:
Remove an IAM user from an IAM group
- classic IAM console
-
Sign in to the Amazon Web Services Management Console and open the IAM console at https://console.amazonaws.cn/iam/.
-
In the navigation pane, choose User groups and then choose
the name of the group.
-
Choose the Users tab. Select the check box next to the
users you want to remove and then choose Remove users.
- Amazon CLI
-
Run the following command:
- API
-
Call the following operation: