To manage your cloud (Single or multi) access, more insights in what is happening in terms of access using some Policies and a concept called Guardrails. In short CAM is to monitor existing access but not for user JML.
However I would suggest you to have a word with your SailPoint CSM.
CSM updated that you can use GCP and AWS connector for Provisioning and Aggreation and CAM is not required
As of now, IdentityNow don’t support multiple group objects, so IAM Users are managed as accounts and IAM groups are primary entitlement that are aggregated as a part of entitlement aggregation. However as a part of account aggregation, associated AWS Managed Policies, Customer Manager Policies, Inline Policies are also aggregated and visible as entitlements. AWS Roles are not supported by the AWS Source.