Review Temporary delegation requests

After initiating a temporary delegation request, you can monitor, approve, and reject requests in the IAM console. The Temporary delegation requests page provides a centralized view of all requests, including those that are pending approval, completed, or rejected. As an administrator, you can review these requests to grant product providers access to AWS resources or reject them based on your organization's security policies, business requirements, or compliance standards. This visibility helps you track the lifecycle of product provider access and maintain oversight of temporary permissions.

Note

You must have the iam:AcceptDelegationRequest permission to approve temporary delegation requests.

To approve a temporary delegation request

Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.
In the navigation pane on the left, choose Temporary delegation requests.
The main page displays a list of your temporary delegation requests with the following information:
- Request ID – Unique identifier for the request
- Status – Current status (Pending, Approved, Rejected, Shared, Expired)
- Requestor - Product provider associated with the request
- Initiated by - IAM principal in the account who initiated the request for the product provider
- Request created– When the request was submitted
- Request expires – When the request expired or will expire
(Optional) Use the filter options to view requests by status:
- All requests – View all your requests regardless of status
- Pending – View requests awaiting administrator approval
- Approved – View approved requests
- Shared – View requests for which access has been shared
- Rejected – View rejected requests with rejection reasons
To view detailed information about a specific request or to review a pending request for approval, choose the request ID.
Review the detailed request information:
- Product provider information
- Request reason and justification
- Requested duration
- Requested AWS permissions
If you are an administrator reviewing a pending request, choose one of the following options:
- To approve the request, choose Approve. In the approval dialog, you can view the results of the permission simulation. For more information, see Permission simulation beta capability. After confirming access duration and your AWS identity, choose Approve to grant access. If the product provider requested immediate access, they automatically receive temporary permissions and the access duration begins. Otherwise, notify the person who initiated the request to release access to the product provider.
- To reject the request, choose Reject.
  - In the rejection dialog, provide a clear reason for the rejection to help the requester understand why their request was denied.
  - Choose Reject to deny access.
The request list automatically refreshes to show the most current status information. You can also manually refresh the page to check for status updates.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Initiate a temporary delegation request

Revoke Temporary delegation access