In response to @QuinnyPig@twitter.com I try to make AWS Permission Boundaries easier to understand, but I probably don’t. Tl;dr: if you want someone to admin some IAM in an account but not all the IAM, then you might need one: firemon.com/aws-permission-bou

