Saltar al contenido
Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post
Acerca de re:Post

Cross Account S3/Athena Access in IAM Identity Center

0

Earlier we were using IAM Roles and mapped those Roles to the target AWS account since we know the NAMES of the roles we could hardcode them in IAM/s3 policy documents to manage access. with IAM Permissionset inplace , we are confused as to how to easily manage the same access to our platform users. the Names are very Weird and ends with some weird number and characters.

how should we manage the cross account resource and use these new roles created by permissionset ? Thanks

Temas
Administración y gobiernoSeguridad, identidad y cumplimiento
Etiquetas
Centro de identidad de AWS IAMAWS Identity and Access ManagementPolíticas de IAMAWS Account ManagementSeguridad, identidad y cumplimiento
Idioma
English
preguntada hace 3 años466 visualizaciones
2 Respuestas
1
Respuesta aceptada

You would do same as you did with IAM role names. The Permission Set names are 'weird' because they are trying to ensure they are unique and won't conflict with anything you have created. The names don't change once created, so you can use them the same way you use IAM Roles.

Hope this helps,

respondido hace 3 años
EXPERTO
revisado hace 2 años
0

Take a look at using principal and resource tagging in policy conditions. Examples

AWS
EXPERTO
respondido hace 3 años

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Contenido relevante