- 最新
- 投票最多
- 评论最多
Hello ,
Thank you for posting your question on the AWS Repost, my name is Rochak and it will be a pleasure assisting you with this today.
I understand you are trying to find an API to disable an AWS Identity Center user.. Please, let me know if my understanding is incorrect.
Currently there are no API in AWS Identity Center to disable it programmatically. These are all the API supported by the service [1]
You have to disable user from the console. The steps are as follows:
To disable user access
- Open the IAM Identity Center console
- Choose Users.
- Choose the user whose access you want to disable.
- By General information, choose Disable user access.
- In the Disable user access dialog box, choose Disable user access.
Please note that when you disable user access or delete a user in IAM Identity Center, that user will immediately be prevented from signing in to the AWS access portal and will not be able to create new sign in sessions. For more information, see Authentication sessions. [2]
I hope this helps. If you need further info, let me know in the comments; otherwise I'd appreciate if you mark my answer as "ACCEPTED".
Kind regards, Rochak from AWS
References:
[1] IAM Identity Center API https://docs.aws.amazon.com/singlesignon/latest/APIReference/API_Operations.html
[2] Disable IAM User Access https://docs.aws.amazon.com/singlesignon/latest/userguide/disableuser.html
相关内容
AWS 官方已更新 1 年前- AWS 官方已更新 3 年前
- AWS 官方已更新 9 个月前
- AWS 官方已更新 6 个月前
You can also do this via the API:
Create a PermissionSet that provides no access Set up a group that has the PermissionSet attached. Using the API move the user from the original group to the no access group. Using the API restore the user to their original group when access needs to be restored. Reference - https://aws.amazon.com/blogs/security/announcing-new-aws-iam-identity-center-apis-to-manage-users-and-groups-at-scale/
Hope this helps.