Controlling access in AWS Partner Central account management - AWS Partner Central
Permissions for AWS Partner Central account managementAdditional resources

Controlling access in AWS Partner Central account management

AWS Identity and Access Management (IAM) is an AWS service you can use at no additional charge that helps you control access to AWS resources. AWS Partner Central account management uses IAM for AWS Partner Central authentication and authorization. Administrators can use IAM roles to control who can sign in to AWS Partner Central and what AWS Partner Central permissions they have.

Important

AWS Partner Central users that you create authenticate using their credentials. However, they must use the same AWS account. Any change a user makes can impact the entire account.

For more information about available actions, resources, and condition keys, refer to Actions, resources, and condition keys for AWS services.

Permissions for AWS Partner Central account management

You can use the following permissions in IAM policies for AWS Partner Central account management. You can combine permissions into a single IAM policy to grant the permissions you want.

AssociatePartnerAccount

AssociatePartnerAccount provides access to associate AWS Partner Central and AWS accounts.

  • Action groups: ReadWrite

  • Required resources: Does not support specifying a resource Amazon Resource Number (ARN) in the Resource element of an IAM policy statement. To allow access, specify "Resource": "*" in your policy.

AssociatePartnerUser

AssociatePartnerUser provides access to associate AWS Partner Central users and IAM roles.

  • Action groups: ReadWrite

  • Required resources: Does not support specifying a resource Amazon Resource Number (ARN) in the Resource element of an IAM policy statement. To allow access, specify "Resource": "*" in your policy.

DisassociatePartnerUser

DisassociatePartnerUser provides access to associate AWS Partner Central users and IAM roles.

  • Action groups: ReadWrite

  • Required resources: Does not support specifying a resource Amazon Resource Number (ARN) in the Resource element of an IAM policy statement. To allow access, specify "Resource": "*" in your policy.

Additional resources

Refer to the following sections of the IAM User Guide for more information: