1개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
0
That condition is testing the tags of the role, since that is the resource specified in the policy and the resource the policy is attached to.
Instead of testing the tag of a certificate, test the attributes that are extracted from the cert. See: Trust policy.
I would put it in the Subject Name Alternative, DirName, CommonName. But you will need to use the CLI to generate this as the console does not have this option. See: issue-certificate.
관련 콘텐츠
- 질문됨 3달 전
- AWS 공식업데이트됨 2년 전
- AWS 공식업데이트됨 2년 전
- AWS 공식업데이트됨 2년 전
Ok, thanks. In certificates, subject CN is the domain name we provide while ACM creates the certificate. My use case needs to add UUID in the certificates to differentiate between 2 devices. Where should UUID be added?