1 回答
- 最新
- 投票最多
- 评论最多
0
sso-directory
is the services prefix for the AWS IAM identity Center directory (successor to AWS Single Sign-On directory or AWS SSO directory)
, while identitystore
is the services prefix for the AWS Identity Store (legacy term: AWS SSO store or AWS SSO identity store).
So both exist, but are used for different things.
To give an example:
identitystore:CreateGroup
would grant permission to create a group in the specified IdentityStoresso-directory:CreateGroup
would grant permission to create a group in the directory that AWS IAM Identity Center provides by default
已回答 10 个月前