Some or all of the information on this page might not apply to Trusted Cloud by S3NS.

IAM release notes

This page documents production updates to Identity and Access Management. Check this page for announcements about new or updated features, bug fixes, known issues, and deprecated functionality.

You can see the latest product updates for all of Trusted Cloud by S3NS on the Trusted Cloud page, browse and filter all release notes in the Trusted Cloud console, or programmatically access release notes in BigQuery.

To get the latest product updates delivered to you, add the URL of this page to your feed reader, or add the feed URL directly.

June 13, 2025

Conditions that check the tags for a resource can also check other attributes, such as the resource name of the timestamp of the request. This feature is available in Preview. For more information, see Resource tags.

May 28, 2025

Workforce Identity Federation supports detailed audit logging, which you can use to troubleshoot attribute mapping issues. This feature is generally available.

May 15, 2025

The predefined role reference and the permissions reference have been reorganized to improve performance and searchability. To see the new experience, visit the IAM roles and permissions index.

May 07, 2025

Workload Identity Federation support for X.509 certificates is generally available.

December 09, 2024

Using IAM attributes in custom organization policies is generally available. For more information, see Use custom organization policies.

You can use the iam.managed.preventPrivilegedBasicRolesForDefaultServiceAccounts managed organization policy constraint to prevent default service accounts from being granted the Editor (roles/editor) or Owner (roles/owner) roles. For more information, see Prevent the Owner and Editor role from being granted to default service accounts.

September 12, 2024

You can manage IAM deny policies using the Google Cloud console. For more information, see Deny access to resources.

August 12, 2024

You can attach tags to Identity and Access Management (IAM) service accounts to conditionally grant or deny access to specific service accounts. This feature is in Preview. For more information, see Creating and managing tags for service accounts.

July 30, 2024

You can use IAM attributes in custom organization policies to control how your allow policies can be modified. For more information, see Use custom organization policies.