1 Antwort
- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
0
Are you using AWS SSO Permission Sets to assign IAM policies to your users? https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-overview.html. As you suggest you are applying an inline policy I would assume not (since inline policies only apply to IAM users)?
If you are using SSO Permission Sets, then the read only permission set AWSReadOnlyAccess
which uses the AWS Managed Policy arn:aws:iam::aws:policy/job-function/ViewOnlyAccess
does not specifically include STS:* as a permission. Therefore I would assume that it is being implicitly denied.
If you could clarify it would help greatly.
beantwortet vor 2 Jahren
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor einem Jahr
- AWS OFFICIALAktualisiert vor einem Jahr
- AWS OFFICIALAktualisiert vor einem Jahr