4 Answers
- Newest
- Most votes
- Most comments
0
Hello Micke2k,
Please replace the account id "123456789012" with the account id for your AWS account. I used this account id as an example.
Please let me know if this works now or if you have any issues.
Thank you,
Ujjwal
answered 6 years ago
0
Hello Micke2k,
Thank you for reaching out to us. Please try to specify the account ARNs as an array within the Principal.
For example,
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": [
"arn:aws:iam::123456789012:root",
"arn:aws:iam::987654321098:root"
]
},
"Action": "sts:AssumeRole",
"Condition": {
"StringEquals": {
"sts:ExternalId": "1555555555"
}
}
}
]
}
Thanks,
Ujjwal
Edited by: ujjwal-aws on Mar 22, 2018 10:51 AM
answered 6 years ago
0
Hi,
This doesnt work. It gives error:
An error occurred: Invalid principal in policy: "AWS":"arn:aws:iam::123456789012:root"
answered 6 years ago
Relevant content
- Accepted Answerasked 9 months ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago