1 回答
- 最新
- 投票最多
- 评论最多
0
Okay, i suppose i found the answer myself, i probably need to add something like
"Condition": {
"StringEquals": {
"iam:ResourceTag/SSMSessionRunAs": "${aws:username}"
}
}
to the "Trust relationship" in the Role. Then each user will need to provide exact the same Tag while assuming the role as their IAM username is, and by using this separation i can separate users in EC2 instance.
已回答 2 年前
$PSStyle.OutputRendering = 'PlainText'