Cross Account S3/Athena Access in IAM Identity Center

0

Earlier we were using IAM Roles and mapped those Roles to the target AWS account since we know the NAMES of the roles we could hardcode them in IAM/s3 policy documents to manage access. with IAM Permissionset inplace , we are confused as to how to easily manage the same access to our platform users. the Names are very Weird and ends with some weird number and characters.

how should we manage the cross account resource and use these new roles created by permissionset ? Thanks

2 回答
0
已接受的回答

You would do same as you did with IAM role names. The Permission Set names are 'weird' because they are trying to ensure they are unique and won't conflict with anything you have created. The names don't change once created, so you can use them the same way you use IAM Roles.

Hope this helps,

profile picture
已回答 1 年前
0

Take a look at using principal and resource tagging in policy conditions. Examples

profile pictureAWS
专家
kentrad
已回答 1 年前

您未登录。 登录 发布回答。

一个好的回答可以清楚地解答问题和提供建设性反馈,并能促进提问者的职业发展。

回答问题的准则