Amazon S3 Access Points now support tags for Attribute-Based Access Control (ABAC). S3 Access Points simplify managing data access to your shared datasets in S3 general purpose and directory buckets. With ABAC support, you can add tags to your access points and extend your tag-based permissions to new and existing users, roles, and access points. This helps eliminate frequent AWS Identity and Access Management (IAM), S3 bucket, or access point policy updates, simplifying how you scale access governance on your shared datasets.
To get started with tagging your S3 Access Points, use the AWS Management Console, S3 REST API, AWS CLI, or the AWS SDK. ABAC support for S3 Access Points is available in all AWS Regions at no additional cost. To learn more about using tags for access points, visit the S3 User Guide.
Source:: Amazon AWS