IamConfig / IdentityCenterConfig / IdentityCenterPoliciesConfig

Identity Center Permission Set Policy Configuration

Example

    policies:
awsManaged:
- arn:aws:iam::aws:policy/AdministratorAccess
- PowerUserAccess
customerManaged:
- ResourceConfigurationCollectorPolicy
acceleratorManaged:
- AcceleratorManagedPolicy01
- AcceleratorManagedPolicy02
inlinePolicy: iam-policies/sso-permissionSet1-inline-policy.json
permissionsBoundary:
customerManagedPolicy:
name: AcceleratorManagedPolicy
path: /
awsManagedPolicyName: PowerUserAccess

Hierarchy

  • IdentityCenterPoliciesConfig

Implements

Constructors

Properties

acceleratorManaged: undefined | string[] = undefined

List of the names customer managed policies that would be attached to permission set.

Remarks

Specify the names of policies created by Accelerator solution. Solution will create these policies before attaching to permission set. To create policies through Accelerator and attach to permission set, you need to specify policies in policySets object of iam-config.yaml file with identityCenterDependency flag on. Accelerator managed policy name must be part of policySets object of iam-config.yaml file.

awsManaged: undefined | string[] = undefined

List of AWS managed policies that would be attached to permission set.

Remarks

This list can contain policy name or policy arn

customerManaged: undefined | string[] = undefined

List of the names and paths of the customer managed policies that would be attached to permission set.

Remarks

This list can contain only existing customer managed policy names, Accelerator expect these policies would be present prior deployment.

inlinePolicy: undefined | string = undefined

The inline policy that is attached to the permission set.

InlinePolicy reference

permissionsBoundary: undefined | PermissionsBoundaryConfig = undefined

Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary.

Remarks

Specify either customerManagedPolicy to use the name and path of a customer managed policy, or managedPolicy name to use the ARN of an AWS managed policy.

See

IamConfig / IdentityCenterConfig / PermissionsBoundaryConfig

Generated using TypeDoc