jspωiki
AWS Role

Overview#

AWS Role is used for Delegation of Permissions to AWS Resources.

AWS Roles allow you to delegate access with defined permissions to trusted entities without having to share long-term access keys. You can use IAM roles to delegate access to IAM users managed within your account, to IAM users under a different AWS account, or to an AWS service such as EC2.

AWS Role assignment to a AWS user asks for AWS Account (842773767659) 12 digit number. The number is found within the URI/URN of each resource within the account. By default, it appears to assign the permission to the "root" account.

{
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Principal": {
        "AWS": "arn:aws:iam::842773767659:root"
      },
      "Action": "sts:AssumeRole",
      "Condition": {}
    }
  ]
}
}

So can the value be replaced with any URN for a single user? arn:aws:iam::842773767659:user/developer1

Category#

Amazon Web Services

More Information#

There might be more information for this subject on one of the following: