Creating AWS Identity and Access Management Roles Anywhere resources with AWS CloudFormation
AWS Identity and Access Management Roles Anywhere is integrated with AWS CloudFormation, a service that helps you to model and set up your
AWS resources so that you can spend less time creating and managing your resources and
infrastructure. You create a template that describes all the AWS resources that you want (such as
AWS::RolesAnywhere::Crl
, AWS::RolesAnywhere::Profile
, and AWS::RolesAnywhere::TrustAnchor
), and AWS CloudFormation provisions and configures those resources for
you.
When you use AWS CloudFormation, you can reuse your template to set up your IAM Roles Anywhere resources consistently and repeatedly. Describe your resources once, and then provision the same resources over and over in multiple AWS accounts and Regions.
IAM Roles Anywhere and AWS CloudFormation templates
To provision and configure resources for IAM Roles Anywhere and related services, you must understand AWS CloudFormation templates. Templates are formatted text files in JSON or YAML. These templates describe the resources that you want to provision in your AWS CloudFormation stacks. If you're unfamiliar with JSON or YAML, you can use AWS CloudFormation Designer to help you get started with AWS CloudFormation templates. For more information, see What is AWS CloudFormation Designer? in the AWS CloudFormation User Guide.
IAM Roles Anywhere supports creating certificate revocation lists, trust anchors, and profiles in AWS CloudFormation. For more information, including examples of JSON and YAML templates for CRL, TrustAnchor, and Profile, see the AWS CloudFormation User Guide.
Learn more about AWS CloudFormation
To learn more about AWS CloudFormation, see the following resources: