AWS bedrock-agentcore high security documentation change
Summary
Added new BedrockAgentCoreRuntimeIdentityServiceRolePolicy documentation and updated IAM permissions to include runtime identity service-linked roles
Security assessment
The change introduces a new AWS managed policy focused on workload identity access tokens (JWT/userID authentication) and OAuth credential management. This directly addresses authentication/authorization security mechanisms. The added GetWorkloadAccessToken* actions and explicit reference to runtime authentication demonstrate concrete security feature implementation.
Diff
diff --git a/bedrock-agentcore/latest/devguide/security-iam-awsmanpol.md b/bedrock-agentcore/latest/devguide/security-iam-awsmanpol.md index 29aa98a29..ca8855d92 100644 --- a//bedrock-agentcore/latest/devguide/security-iam-awsmanpol.md +++ b//bedrock-agentcore/latest/devguide/security-iam-awsmanpol.md @@ -5 +5 @@ -BedrockAgentCoreFullAccessBedrockAgentCoreNetworkServiceRolePolicyAmazonBedrockAgentCoreMemoryBedrockModelInferenceExecutionRolePolicyPolicy updates +BedrockAgentCoreFullAccessBedrockAgentCoreNetworkServiceRolePolicyAmazonBedrockAgentCoreMemoryBedrockModelInferenceExecutionRolePolicyBedrockAgentCoreRuntimeIdentityServiceRolePolicyPolicy updates @@ -31 +31 @@ This policy includes the following permissions: - * `iam` (AWS Identity and Access Management) – Allows principals to list and get information about roles and policies, and to pass roles with "BedrockAgentCore" in the name to the bedrock-agentcore service. Also allows creating service-linked roles for CloudWatch Application Signals and Amazon Bedrock AgentCore network. + * `iam` (AWS Identity and Access Management) – Allows principals to list and get information about roles and policies, and to pass roles with "BedrockAgentCore" in the name to the bedrock-agentcore service. Also allows creating service-linked roles for CloudWatch Application Signals, Amazon Bedrock AgentCore network, and Amazon Bedrock AgentCore runtime identity. @@ -95,0 +96,21 @@ This policy includes the following permissions. +## AWS managed policy: BedrockAgentCoreRuntimeIdentityServiceRolePolicy + +This policy is attached to a service-linked role that allows the service to perform actions on your behalf. You cannot attach this policy to your users, groups, or roles. + +This policy grants permissions that allow access to identity and token management resources that are required for AgentCore Runtime authentication and authorization. + +**Permissions details** + +This policy includes the following permissions: + + * `bedrock-agentcore` (Amazon Bedrock Agent Core) – Allows the service to get workload access tokens for JWT authentication and user ID-based authentication. Specifically allows `GetWorkloadAccessToken`, `GetWorkloadAccessTokenForJWT`, and `GetWorkloadAccessTokenForUserId` actions on the default workload identity directory and its associated workload identities. + + + + +**Policy contents** + +You can view the complete policy at [BedrockAgentCoreRuntimeIdentityServiceRolePolicy](https://docs.aws.amazon.com/aws-managed-policy/latest/reference/BedrockAgentCoreRuntimeIdentityServiceRolePolicy.html). + +For more information about the service-linked role that uses this policy, see [Using service-linked roles for Amazon Bedrock AgentCore](./service-linked-roles.html). + @@ -101,0 +123,2 @@ Change | Description | Date +BedrockAgentCoreRuntimeIdentityServiceRolePolicy – New policy | Added a new AWS managed policy that allows AgentCore to manage workload identity access tokens and OAuth credentials for agent runtimes. | October 10, 2025 +BedrockAgentCoreFullAccess – Updated policy | Added permission to create the Amazon Bedrock AgentCore runtime identity service-linked role. | October 9, 2025