2개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
1
re: What I'm specifically asking is if you can set it to an arbitrary value like you can with the switchrole api.
No. (as far as I can tell). The switch role widget you reference to specifically calls out displayName.
My interpretation is you want the AWS Console UI reflect an arbitrary value. AWS Console being a first party user interface hasn't been particular customization within a AWS account.
답변함 2년 전
0
Are you interested in setting a display name when you log in with an IAM role? If so, you can set the RoleSessionNameAttribute.
The value of the Name attribute in the Attribute tag is case-sensitive. It must be set to https://aws.amazon.com/SAML/Attributes/RoleSessionName exactly.
Example:
<Attribute Name="https://aws.amazon.com/SAML/Attributes/RoleSessionName">
<AttributeValue>user-id-name</AttributeValue>
</Attribute>
답변함 2년 전
I am aware you can set rolesessionname and have that appear in the upper right of the console as: "role/rolesessionname @ aws account or alias". What I'm specifically asking is if you can set it to an arbitrary value like you can with the switchrole api. That endpoint allows you to set both the display name and the color and it allows things like spaces which you can't use in the rolesessionname. With that api, I have the flexibility of setting it to something like: "Speedrun Prod Admin us-west-2". Whereas setting the role session name would make it something like: "speedrun-Admin/Speedrun-Prod-Admin-us-west-2 @ XXXXXXXXXXX"