1回答
- 新しい順
- 投票が多い順
- コメントが多い順
0
Hello.
As stated in the document below, there are no condition keys, so I don't think it is currently possible to manage only specific groups.
https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycentersuccessortoawssinglesign-ondirectory.html
Thank you @Riku_Kobayashi. I read this doc. I was hoping people may know an indirect way to make it work. For example, since the privilege is for Console sessions, I am trying to explore if there are relevant condition filters available.
I thought that there was no key for narrowing down to a specific group in the global condition key. https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#AvailableKeys