2 Answers
- Newest
- Most votes
- Most comments
0
This approach is not suitable for default identity store directory or, in other words, when your identity store default one from AWS.
answered 13 days ago
-1
Create an iam policy and attach to group A.
The policy should control the action CreateGroupMembership limited to the resources
- Group (B)
- User (*)
- Identity Store (X)
All these resources need defining to allow group A to add any user to group B in identity site x.
https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsidentitystore.html
Relevant content
- asked 13 days ago
- asked 3 months ago
- asked 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated a month ago
- AWS OFFICIALUpdated a year ago