Revoke permissions from an IAM user

Last updated:2021-10-29 17:57:41

This topic describes how to revoke permissions from an IAM user when the IAM user does not require specific permissions or leaves the enterprise.

Method 1: Revoke permissions from an IAM user on the Subusers page

  1. Log in to the IAM console.
  2. In the left navigation pane, choose Identities > Subusers. The Subusers page appears.
  3. Click the username of the target IAM user, or click Details in the Actions column. The User details page appears.
  4. Click the Permissions tab.
  5. On the Personal authority tab, find the target policy and click Revoke in the Actions column.
  6. In the message that appears, click Confirm.

Method 2: Revoke permissions from an IAM user on the Grants page

  1. Log in to the IAM console.
  2. In the left navigation pane, choose Permissions > Grants. The Grants page appears.
  3. Find the target policy and click Revoke in the Actions column.
  4. In the message that appears, click OK.

Method 3: Revoke permissions from an IAM user on the Policies page

  1. Log in to the IAM console.
  2. In the left navigation pane, choose Permissions > Policies. The Policies page appears.
  3. Click the name of the target policy. The Policy details page appears.
  4. Click the Associated object tab.
  5. Find the target IAM user and click Remove in the Actions column.
  6. In the message that appears, click Confirm.

Did you find the above information helpful?

Unhelpful
Mostly Unhelpful
A little helpful
Helpful
Very helpful

What might be the problems?

Insufficient
Outdated
Unclear or awkward
Redundant or clumsy
Lack of context for the complex system or functionality

More suggestions

0/200

Please give us your feedback.

Submitted

Thank you for your feedback.

问题反馈