Community Note

• Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment

Description

AWS now supports tags on additional IAM resources:

• Customer Managed Policies
• Instance Profiles
• OpenID Connect Providers
• SAML Providers
• Server Certificates
• Virtual MFAs

https://aws.amazon.com/about-aws/whats-new/2021/02/aws-identity-and-access-management-now-supports-tags-on-additional-resources/

New or Affected Resource(s)

• aws_iam_instance_profile
• aws_iam_openid_connect_provider
• aws_iam_policy
• aws_iam_saml_provider
• aws_iam_server_certificate

Potential Terraform Configuration

resource "aws_iam_policy" "policy" {
  name        = "test_policy"
  path        = "/"
  description = "My test policy"
  tags = {
    key = "value"
  }

  policy = <<EOF
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Action": [
        "ec2:Describe*"
      ],
      "Effect": "Allow",
      "Resource": "*"
    }
  ]
}
EOF
}

References

• https://aws.amazon.com/about-aws/whats-new/2021/02/aws-identity-and-access-management-now-supports-tags-on-additional-resources/