1回答
- 新しい順
- 投票が多い順
- コメントが多い順
0
We ended up using the cross-account assume role. We setup a role in Account B that allowed the needed access to MSK and allow sts:AssumeRole from Account A. We then added a policy to the Glue execution role in Account A that allows assuming the role in Account B. In Glue, we then setup the https://github.com/aws/aws-msk-iam-auth handler to assume the role in Account B.
回答済み 2年前
関連するコンテンツ
- AWS公式更新しました 1年前