Managing IAM roles
Occasionally you need to modify or delete the roles that you have created. To change a role, you can do any of the following:
Modify the policies that are associated with the role
Change who can access the role
Edit the permissions that the role grants to users
Change the maximum session duration setting for roles that are assumed using the Amazon Web Services Management Console, Amazon CLI or API
You can also delete roles that are no longer needed. You can manage your roles from the Amazon Web Services Management Console, the Amazon CLI, and the API.