Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Redshift Serverless access in SCP

0

Hi AWS, if I add redshift-serverless:* in the SCP does it change anything i.e.

  1. Any public endpoint
  2. Lack of support for vpc endpoints
  3. Communication flow between AWS Managed service components vs Customer Managed
Topics
ServerlessAnalyticsSecurity, Identity, & ComplianceAWS Well-Architected Framework
Tags
ServerlessAmazon RedshiftSecurity, Identity, & ComplianceSecurity
Language
English
asked 3 years ago397 views
1 Answer
0
{
    "Statement": {
        "Effect": "Allow",
        "Action": "redshift-serverless:*",
        "Resource": "*"
    }
}

Despite utilizing the Allow value keyword identical to an IAM permission policy, in an SCP, it doesn't provide actual user authorization. SCPs operate as filters, defining the utmost permissions for accounts within an organization, organizational unit (OU), or individual account, rather than granting specific user permissions.

Reference Document:

answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content