1 Answer
- Newest
- Most votes
- Most comments
0
There isn't currently a way to change this. It's not explicit on the Editing policy templates page, but as of 10-MAR-2024 Editing Amazon Verified Permissions static policies calls out "principal referenced by a static policy" as something that can't change.
You can't change these elements of a static policy:
- Changing a policy from a static policy to a template-linked policy.
- Changing the effect of a static policy from permit or forbid.
- The principal referenced by a static policy.
- The resource referenced by a static policy.
Verified Permissions can use principal
as part of PolicyFilter and these is some backend indexing to support this. You are correct is is not clear that switching from ==
to in
changes the principal. I'll submit documentation feedback on this topic.
answered 2 months ago
Relevant content
- Accepted Answerasked 4 months ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago