Igor sits down with Welly Siauw, Principal Partner Solutions Architect at AWS, to explore the game-changing IAM Temporary Delegations feature that's simplifying how AWS partners onboard and manage customer accounts. They dive deep into how this feature eliminates the friction of traditional onboarding processes, where customers previously had to navigate complex documentation and manually configure IAM roles and permissions. Now, partners can request temporary, limited permissions that customers can review and approve through a streamlined console experience, complete with AI-generated human-readable permission descriptions. The conversation covers advanced patterns like read-only discovery followed by deployment permissions, admin delegation workflows for enterprise environments, and day-two operations for ongoing feature updates. With robust security controls including CloudTrail logging, permission boundaries, and revocation capabilities, this feature represents a new standard for partner-customer trust and operational efficiency. Current adopters include major partners like CrowdStrike, Databricks, Sentinel One, and HashiCorp, with the feature available to ISV Accelerate partners with AWS Marketplace listings.

Guest

**Welly Siauw** - Principal Partner Solutions Architect, AWS

- LinkedIn: https://www.linkedin.com/in/wellsiau/

Links:

* https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies-temporary-delegation.html

* https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies-temporary-delegation-partner-guide.html

* https://aws.amazon.com/blogs/apn/streamline-customer-onboarding-and-accelerate-time-to-value-with-aws-iam-temporary-delegation/