By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Affected police which is marked for retirement, throws error when trying to edit

0

Following the AWS mail that policies that are using retired policies to be modified to use fine grained actions, Our account had 2 policies that are not due for modification and out of 2 I was able to modify only one. The policy named AwsSSOOnlinePolicy (not sure it is AWS default policy type) is listed under "Manage New IAM Actions" with "aws-portal:ModifyAccount" as Deprecated IAM actions, but when trying to edit shown with no JSON content ot policy does not exist.

Topics
Security, Identity, & Compliance
Tags
IAM Policies
Language
English
Jayakumar
asked 10 months ago163 views
1 Answer
0

AwsSSOOnlinePolicy doesn't seem to be AWS Managed Policy, if this is not required or not being used, you can copy it's json content and create new one making sure no retired IAM actions are in it.

Click the policy, go to Entities attached, if there is none, you can safely delete it.

AWS managed SSO policy that are available:

Enter image description here

profile pictureAWS
EXPERT
secondabhi_aws
answered 10 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content