Difference between revisions of "Terraform resource: aws ssoadmin managed policy attachment"
Jump to navigation
Jump to search
Tags: Mobile web edit, Mobile edit |
|||
(14 intermediate revisions by one other user not shown) | |||
Line 1: | Line 1: | ||
− | + | * https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ssoadmin_managed_policy_attachment | |
+ | aws_ssoadmin_managed_policy_attachment | ||
− | aws_ssoadmin_managed_policy_attachment | + | == Official example == |
+ | |||
+ | data "[[aws_ssoadmin_instances]]" "example" {} | ||
+ | |||
+ | resource "[[aws_ssoadmin_permission_set]]" "example" { | ||
+ | name = "Example" | ||
+ | [[instance_arn]] = [[tolist]]([[data.]]aws_ssoadmin_instances.example.arns)[0] | ||
+ | } | ||
+ | |||
+ | resource "aws_ssoadmin_managed_policy_attachment" "example" { | ||
+ | [[instance_arn]] = tolist(data.aws_ssoadmin_instances.example.arns)[0] | ||
+ | [[managed_policy_arn]] = "[[arn:aws:iam::aws:policy]]/AlexaForBusinessDeviceSetup" | ||
+ | permission_set_arn = aws_ssoadmin_permission_set.example.arn | ||
+ | } | ||
+ | == Related == | ||
+ | * <code>[[aws_ssoadmin_permission_set]]</code> | ||
+ | * <code>[[identity_store_id]]</code> | ||
+ | * <code>[[aws identitystore]]</code> | ||
== See also == | == See also == | ||
+ | * {{AWS policies}} | ||
* {{AWS SSO}} | * {{AWS SSO}} | ||
* {{identitystore}} | * {{identitystore}} | ||
[[Category:AWS]] | [[Category:AWS]] |
Latest revision as of 15:48, 14 March 2023
aws_ssoadmin_managed_policy_attachment
Official example[edit]
data "aws_ssoadmin_instances" "example" {} resource "aws_ssoadmin_permission_set" "example" { name = "Example" instance_arn = tolist(data.aws_ssoadmin_instances.example.arns)[0] } resource "aws_ssoadmin_managed_policy_attachment" "example" { instance_arn = tolist(data.aws_ssoadmin_instances.example.arns)[0] managed_policy_arn = "arn:aws:iam::aws:policy/AlexaForBusinessDeviceSetup" permission_set_arn = aws_ssoadmin_permission_set.example.arn }
Related[edit]
See also[edit]
- AWS policies: managed policies, Job functions, AWS trust policy, AWS Service Control Policy (SCP), Resource-based policies, Identity-based policies,
"Resource":
, Job function, AWS Policy Generator,s3:, lambda:, cloudwatch:, AWSSecretsManagerReadWriteAccess
- AWS IAM Identity Center, AWS SSO,
aws sso
, AWS access portal,aws_ssoadmin_permission_set, arn:aws:sso
- AWS IAM Identity Center:
aws identitystore [ create-user | create-group | list-groups | list-users ]
, Permission sets
Advertising: