1 回答
- 最新
- 投票最多
- 评论最多
1
the needed action is "Action": "sso:ListPermissionSets"
you need to replace your "sso:"
, with "sso:*"
, or better avoid asterisks "*" and provide a specific action
Thanks, but my questions is even if i provide enough permissions ,still i couldn't list the permission sets.
client = boto3.client('sso-admin') response = client.list_permission_sets( InstanceArn='arn:aws:sso:::instance/ins-*****' ) print(response)
Explicitly allow
sso:ListPermissionSets
. Adding a specific inline policy forsso:ListPermissionSets
should resolve the issue.
相关内容
- AWS 官方已更新 2 年前
please accept the answer if it was useful