1 Answer
- Newest
- Most votes
- Most comments
1
the needed action is "Action": "sso:ListPermissionSets"
you need to replace your "sso:"
, with "sso:*"
, or better avoid asterisks "*" and provide a specific action
Thanks, but my questions is even if i provide enough permissions ,still i couldn't list the permission sets.
client = boto3.client('sso-admin') response = client.list_permission_sets( InstanceArn='arn:aws:sso:::instance/ins-*****' ) print(response)
Explicitly allow
sso:ListPermissionSets
. Adding a specific inline policy forsso:ListPermissionSets
should resolve the issue.
Relevant content
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 months ago
please accept the answer if it was useful