Difference between revisions of "Terraform resource: aws ssoadmin managed policy attachment"
Jump to navigation
Jump to search
Tags: Mobile web edit, Mobile edit |
|||
| (2 intermediate revisions by one other user not shown) | |||
| Line 4: | Line 4: | ||
== Official example == | == Official example == | ||
| − | data "aws_ssoadmin_instances" "example" {} | + | data "[[aws_ssoadmin_instances]]" "example" {} |
resource "[[aws_ssoadmin_permission_set]]" "example" { | resource "[[aws_ssoadmin_permission_set]]" "example" { | ||
| Line 13: | Line 13: | ||
resource "aws_ssoadmin_managed_policy_attachment" "example" { | resource "aws_ssoadmin_managed_policy_attachment" "example" { | ||
[[instance_arn]] = tolist(data.aws_ssoadmin_instances.example.arns)[0] | [[instance_arn]] = tolist(data.aws_ssoadmin_instances.example.arns)[0] | ||
| − | managed_policy_arn = "[[arn:aws:iam::aws:policy]]/AlexaForBusinessDeviceSetup" | + | [[managed_policy_arn]] = "[[arn:aws:iam::aws:policy]]/AlexaForBusinessDeviceSetup" |
permission_set_arn = aws_ssoadmin_permission_set.example.arn | permission_set_arn = aws_ssoadmin_permission_set.example.arn | ||
} | } | ||
| Line 20: | Line 20: | ||
* <code>[[aws_ssoadmin_permission_set]]</code> | * <code>[[aws_ssoadmin_permission_set]]</code> | ||
* <code>[[identity_store_id]]</code> | * <code>[[identity_store_id]]</code> | ||
| + | * <code>[[aws identitystore]]</code> | ||
== See also == | == See also == | ||
Latest revision as of 15:48, 14 March 2023
aws_ssoadmin_managed_policy_attachment
Official example[edit]
data "aws_ssoadmin_instances" "example" {} resource "aws_ssoadmin_permission_set" "example" { name = "Example" instance_arn = tolist(data.aws_ssoadmin_instances.example.arns)[0] } resource "aws_ssoadmin_managed_policy_attachment" "example" { instance_arn = tolist(data.aws_ssoadmin_instances.example.arns)[0] managed_policy_arn = "arn:aws:iam::aws:policy/AlexaForBusinessDeviceSetup" permission_set_arn = aws_ssoadmin_permission_set.example.arn }
Related[edit]
See also[edit]
- AWS policies: managed policies, Job functions, AWS trust policy, AWS Service Control Policy (SCP), Resource-based policies, Identity-based policies,
"Resource":, Job function, AWS Policy Generator,s3:, lambda:, cloudwatch:, AWSSecretsManagerReadWriteAccess - AWS IAM Identity Center, AWS SSO,
aws sso, AWS access portal,aws_ssoadmin_permission_set, arn:aws:sso - AWS IAM Identity Center:
aws identitystore [ create-user | create-group | list-groups | list-users ], Permission sets
Advertising:
