AWS Security ChangesHomeSearch

AWS bedrock-agentcore high security documentation change

Service: bedrock-agentcore · 2025-10-13 · Security-related high

File: bedrock-agentcore/latest/devguide/security-iam-awsmanpol.md

Summary

Added new BedrockAgentCoreRuntimeIdentityServiceRolePolicy documentation and updated IAM permissions to include runtime identity service-linked roles

Security assessment

The change introduces a new AWS managed policy focused on workload identity access tokens (JWT/userID authentication) and OAuth credential management. This directly addresses authentication/authorization security mechanisms. The added GetWorkloadAccessToken* actions and explicit reference to runtime authentication demonstrate concrete security feature implementation.

Diff

diff --git a/bedrock-agentcore/latest/devguide/security-iam-awsmanpol.md b/bedrock-agentcore/latest/devguide/security-iam-awsmanpol.md
index 29aa98a29..ca8855d92 100644
--- a//bedrock-agentcore/latest/devguide/security-iam-awsmanpol.md
+++ b//bedrock-agentcore/latest/devguide/security-iam-awsmanpol.md
@@ -5 +5 @@
-BedrockAgentCoreFullAccessBedrockAgentCoreNetworkServiceRolePolicyAmazonBedrockAgentCoreMemoryBedrockModelInferenceExecutionRolePolicyPolicy updates
+BedrockAgentCoreFullAccessBedrockAgentCoreNetworkServiceRolePolicyAmazonBedrockAgentCoreMemoryBedrockModelInferenceExecutionRolePolicyBedrockAgentCoreRuntimeIdentityServiceRolePolicyPolicy updates
@@ -31 +31 @@ This policy includes the following permissions:
-  * `iam` (AWS Identity and Access Management) – Allows principals to list and get information about roles and policies, and to pass roles with "BedrockAgentCore" in the name to the bedrock-agentcore service. Also allows creating service-linked roles for CloudWatch Application Signals and Amazon Bedrock AgentCore network. 
+  * `iam` (AWS Identity and Access Management) – Allows principals to list and get information about roles and policies, and to pass roles with "BedrockAgentCore" in the name to the bedrock-agentcore service. Also allows creating service-linked roles for CloudWatch Application Signals, Amazon Bedrock AgentCore network, and Amazon Bedrock AgentCore runtime identity. 
@@ -95,0 +96,21 @@ This policy includes the following permissions.
+## AWS managed policy: BedrockAgentCoreRuntimeIdentityServiceRolePolicy
+
+This policy is attached to a service-linked role that allows the service to perform actions on your behalf. You cannot attach this policy to your users, groups, or roles.
+
+This policy grants permissions that allow access to identity and token management resources that are required for AgentCore Runtime authentication and authorization.
+
+**Permissions details**
+
+This policy includes the following permissions:
+
+  * `bedrock-agentcore` (Amazon Bedrock Agent Core) – Allows the service to get workload access tokens for JWT authentication and user ID-based authentication. Specifically allows `GetWorkloadAccessToken`, `GetWorkloadAccessTokenForJWT`, and `GetWorkloadAccessTokenForUserId` actions on the default workload identity directory and its associated workload identities. 
+
+
+
+
+**Policy contents**
+
+You can view the complete policy at [BedrockAgentCoreRuntimeIdentityServiceRolePolicy](https://docs.aws.amazon.com/aws-managed-policy/latest/reference/BedrockAgentCoreRuntimeIdentityServiceRolePolicy.html).
+
+For more information about the service-linked role that uses this policy, see [Using service-linked roles for Amazon Bedrock AgentCore](./service-linked-roles.html).
+
@@ -101,0 +123,2 @@ Change | Description | Date
+BedrockAgentCoreRuntimeIdentityServiceRolePolicy – New policy |  Added a new AWS managed policy that allows AgentCore to manage workload identity access tokens and OAuth credentials for agent runtimes. | October 10, 2025  
+BedrockAgentCoreFullAccess – Updated policy |  Added permission to create the Amazon Bedrock AgentCore runtime identity service-linked role. | October 9, 2025