By using AWS re:Post, you agree to the Terms of Use
/Assume Role for SSO Users/

Assume Role for SSO Users


Is there available a functionality to make assume a (custom) role for SSO users now? It would help us to provide more granular permissions for users with specific roles.
I meant now, because there was already a similar question on old forum:


1 Answers

You cannot customize the name of roles still assumed by SSO, but the permissions of that role are all defined by your mappings in AWS SSO to the IAM policies defined for that group. With those SSO group to role mappings this would allow you to set granular access. Have you taken a look at this:

answered 6 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions