Managing IAM roles - Amazon Identity and Access Management
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Managing IAM roles

Occasionally you need to modify or delete the roles that you have created. To change a role, you can do any of the following:

  • Modify the policies that are associated with the role

  • Change who can access the role

  • Edit the permissions that the role grants to users

  • Change the maximum session duration setting for roles that are assumed using the Amazon Web Services Management Console, Amazon CLI or API

You can also delete roles that are no longer needed. You can manage your roles from the Amazon Web Services Management Console, the Amazon CLI, and the API.