- 최신
- 최다 투표
- 가장 많은 댓글
Give a peek to this talk I gave at SANS for more detail. https://www.sans.org/webcasts/aws-id-prefixes-aws-doesnt-cover-11
Unique IDs AWS confirms in many support cases that an ID "collision" will not happen.
Let me know if you have any issues with this, or if it helps you then please accept my answer after you've tried it out - it would be much appreciated! Good luck :)
Hi,
given IAM users are defined by account-related ArNs (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_identifiers.html), I would say they are unique across account, not globally.
Hope it helps ;)
I believe they were referring to the ID and not the arn.
Technically there could be a clash and not knowing if aws accounts or track theses some where. but based on the complexity of the unique ID then it’s very unlikely.
The unique ID is like a GUID or a SHA
The arn is a friendly name.
Ok, I thought it referred to the unique IAM User ARN, but good that D G could clarify ;)
They ARE unique globally they have to be to make sure that cross account unintended access would not be granted.
Thanks! The talk was very interesting and helpful.
rePost-User-7543992@ no problem I gave that talk quite sometime ago. Glad you enjoyed it!