Removing a user or group from an IAM role

To remove an AWS Managed Microsoft AD user or group from an IAM role, perform the following steps.

In the AWS Directory Service console navigation pane, choose Directories.
On the Directories page, choose your directory ID.
On the Directory details page, do one of the following:
1. If you have multiple Regions showing under Multi-Region replication, select the Region where you want to remove your assignments, and then choose the Application management tab. For more information, see Primary vs additional Regions.
2. If you do not have any Regions showing under Multi-Region replication, choose the Application management tab.
Under the AWS Management Console section, choose the IAM role you want to remove users and groups from.
On the Selected role page, under Manage users and groups for this role, select the users or groups to remove the role from and choose Remove. The role is removed from the specified users and groups, but the role is not removed from your account.

Note
If you want to delete a role, see Delete roles or instance profiles.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Viewing users and groups assigned to a role

Using AWS managed policies