AWS Code Sample
Catalog

artifact-user-policy-grants-access-to-create-the-role-to-integrate-with-aws-organizations.json

This IAM identity-based permission policy demonstrates how to grant a user permission to create the role that allows AWS Artifact to integrate with AWS Organization.

{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": "iam:ListRoles", "Resource": "arn:aws:iam::*:role/*" }, { "Effect": "Allow", "Action": "iam:CreateRole", "Resource": "arn:aws:iam::*:role/service-role/AWSArtifactAccountSync" }, { "Effect": "Allow", "Action": "iam:AttachRolePolicy", "Resource": "arn:aws:iam::*:role/service-role/AWSArtifactAccountSync", "Condition": { "ArnEquals": { "iam:PolicyARN": "arn:aws:iam::aws:policy/service-role/AWSArtifactAccountSync" } } } ] }

Sample Details

Service: artifact

Author: AWS

Type: full-example

On this page: