IAM ID Prefixes

Overview

IAM Prefixes are used to clarify the type of resource. These are helpful to know when investigating in Cloudtrail

Understanding unique ID prefixes

IAM uses the following prefixes to indicate what type of resource each unique ID applies to. Prefixes may vary based on when they were created.

Prefix
Resource type

ABIA

AWS STS service bearer token

ACCA

Context-specific credential

AGPA

User group

AIDA

IAM user

AIPA

Amazon EC2 instance profile

AKIA

Access key

ANPA

Managed policy

ANVA

Version in a managed policy

APKA

Public key

AROA

Role

ASCA

Certificate

ASIA

Temporary (AWS STS) access key IDs use this prefix, but are unique only in combination with the secret access key and the session token.

Reference

LogoIAM identifiers - AWS Identity and Access ManagementAWS Identity and Access Management
PreviousFiltering and Searching CloudTrail LogsNextAdditional Resources

Last updated