Difference between revisions of "Sts:AssumeRoleWithSAML"

From wikieduonline
Jump to navigation Jump to search
(Created page with " == See also == * {{AWS STS}} * {{AWS SAML}}")
 
 
(11 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 +
{{lowercase}}
 +
[[sts]]:AssumeRoleWithSAML
  
 +
 +
assume_role_policy = jsonencode({
 +
    "Version": "2012-10-17",
 +
    "Statement": [
 +
        {
 +
            "Effect": "Allow",
 +
            "Principal": {
 +
                "Federated": "arn:aws:iam::01234567980:[[saml-provider]]/YourGoogleAppsApp"
 +
            },
 +
            "Action": "sts:AssumeRoleWithSAML",
 +
            "Condition": {
 +
                "StringEquals": {
 +
                    "SAML:aud": "https://signin.aws.amazon.com/saml"
 +
                }
 +
            }
 +
        }
 +
    ]
 +
 +
== Related ==
 +
* [[SAML Role Attribute]]
 +
* <code>[[assume-role-with-saml]]</code>
 +
* [[Not authorized to perform sts:AssumeRoleWithSAML]]
 +
* <code>[[assume_role_policy]]</code>
  
 
== See also ==
 
== See also ==
* {{AWS STS}}
+
* {{aws_iam_role_resource}}
 +
* {{aws sts}}
 
* {{AWS SAML}}
 
* {{AWS SAML}}
 +
 +
[[Category:AWS]]

Latest revision as of 09:15, 5 July 2024

sts:AssumeRoleWithSAML


assume_role_policy = jsonencode({
   "Version": "2012-10-17",
   "Statement": [
       {
           "Effect": "Allow",
           "Principal": {
               "Federated": "arn:aws:iam::01234567980:saml-provider/YourGoogleAppsApp"
           },
           "Action": "sts:AssumeRoleWithSAML",
           "Condition": {
               "StringEquals": {
                   "SAML:aud": "https://signin.aws.amazon.com/saml"
               }
           }
       }
   ]

Related[edit]

See also[edit]

Advertising: