Delete permission sets

Before you can delete a permission set from IAM Identity Center, you must remove it from all Amazon Web Services accounts that use the permission set. To check existing user and group access, see View user and group assignments.

To remove a permission set from an Amazon Web Services account

Open the IAM Identity Center console.
Under Multi-account permissions, choose Amazon Web Services accounts.
On the Amazon Web Services accounts page, a tree view list of your organization appears. Select the name of the Amazon Web Services account from which you want to remove the permission set.
On the Overview page for the Amazon Web Services account, choose the Permission sets tab.
Select the check box next to the permission set that you want to remove, and then choose Remove.
In the Remove permission set dialog box, confirm that the correct permission set is selected, type Delete to confirm removal, and then choose Remove access.

Use the following procedure to delete one or more permission sets so that they can no longer be used by any Amazon Web Services account in the organization.

Note

All users and groups that have been assigned this permission set, regardless of what Amazon Web Services account is using it, will no longer be able to sign in. To check existing user and group access, see View user and group assignments.

To delete a permission set from an Amazon Web Services account

Open the IAM Identity Center console.
Under Multi-account permissions, choose Permission sets.
Select the permission set that you want to delete, and then choose Delete.
In the Delete permission set dialog box, type the name of the permission set to confirm deletion, and then choose Delete. The name is case-sensitive.

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Use IAM policies

Configure permission set properties