Difference between revisions of "Sts:AssumeRoleWithSAML"
Jump to navigation
Jump to search
| Line 22: | Line 22: | ||
== Related == | == Related == | ||
* [[SAML Role Attribute]] | * [[SAML Role Attribute]] | ||
| − | * [[assume-role-with-saml]] | + | * <code>[[assume-role-with-saml]]</code> |
* [[Not authorized to perform sts:AssumeRoleWithSAML]] | * [[Not authorized to perform sts:AssumeRoleWithSAML]] | ||
| − | * [[assume_role_policy]] | + | * <code>[[assume_role_policy]]</code> |
== See also == | == See also == | ||
Latest revision as of 09:15, 5 July 2024
sts:AssumeRoleWithSAML
assume_role_policy = jsonencode({
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"Federated": "arn:aws:iam::01234567980:saml-provider/YourGoogleAppsApp"
},
"Action": "sts:AssumeRoleWithSAML",
"Condition": {
"StringEquals": {
"SAML:aud": "https://signin.aws.amazon.com/saml"
}
}
}
]
Related[edit]
- SAML Role Attribute
assume-role-with-saml- Not authorized to perform sts:AssumeRoleWithSAML
assume_role_policy
See also[edit]
aws_iam_role: assume_role_policy, iam:CreateRole- AWS STS
(sts:),aws sts[get-session-token|get-caller-identity|assume-role | assume-role-with-web-identity | assume-role-with-saml | get-access-key-info ] - SAML, IdP, AWS SAML, AWS IAM, AWS SAML endpoint,
SAML:EduPersonOrgDN, SAML Role Attribute, assume-role-with-saml
Advertising:
