2 個答案
- 最新
- 最多得票
- 最多評論
0
This approach is not suitable for default identity store directory or, in other words, when your identity store default one from AWS.
已回答 1 個月前
-1
Create an iam policy and attach to group A.
The policy should control the action CreateGroupMembership limited to the resources
- Group (B)
- User (*)
- Identity Store (X)
All these resources need defining to allow group A to add any user to group B in identity site x.
https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsidentitystore.html
相關內容
- AWS 官方已更新 2 年前