By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Cross Account S3/Athena Access in IAM Identity Center

0

Earlier we were using IAM Roles and mapped those Roles to the target AWS account since we know the NAMES of the roles we could hardcode them in IAM/s3 policy documents to manage access. with IAM Permissionset inplace , we are confused as to how to easily manage the same access to our platform users. the Names are very Weird and ends with some weird number and characters.

how should we manage the cross account resource and use these new roles created by permissionset ? Thanks

Topics
Security, Identity, & ComplianceManagement & Governance
Tags
Security, Identity, & ComplianceAWS Identity and Access ManagementAWS IAM Identity CenterAWS Account ManagementIAM Policies
Language
English
arjunmld
asked a year ago261 views
2 Answers
0
Accepted Answer

You would do same as you did with IAM role names. The Permission Set names are 'weird' because they are trying to ensure they are unique and won't conflict with anything you have created. The names don't change once created, so you can use them the same way you use IAM Roles.

Hope this helps,

profile picture
Carlos del Castillo
answered a year ago
0

Take a look at using principal and resource tagging in policy conditions. Examples

profile pictureAWS
EXPERT
kentrad
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content