AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.
Container for the parameters to the AttachRolePolicy operation.
Attaches the specified managed policy to the specified IAM role. When you attach a
managed policy to a role, the managed policy becomes part of the role's permission
(access) policy.
You cannot use a managed policy as the role's trust policy. The role's trust policy
is created at the same time as the role, using CreateRole
. You can update a role's trust policy using UpdateAssumerolePolicy
.
Use this operation to attach a managed policy to a role. To embed an inline
policy in a role, use PutRolePolicy
. For more information about policies, see Managed
policies and inline policies in the IAM User Guide.
As a best practice, you can validate your IAM policies. To learn more, see Validating IAM policies in the IAM User Guide.
Namespace: Amazon.IdentityManagement.Model
Assembly: AWSSDK.IdentityManagement.dll
Version: 3.x.y.z
public class AttachRolePolicyRequest : AmazonIdentityManagementServiceRequest IAmazonWebServiceRequest
The AttachRolePolicyRequest type exposes the following members
Name | Description | |
---|---|---|
AttachRolePolicyRequest() |
Name | Type | Description | |
---|---|---|---|
PolicyArn | System.String |
Gets and sets the property PolicyArn. The Amazon Resource Name (ARN) of the IAM policy you want to attach. For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference. |
|
RoleName | System.String |
Gets and sets the property RoleName. The name (friendly name, not ARN) of the role to attach the policy to. This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@- |
The following command attaches the AWS managed policy named ReadOnlyAccess to the IAM role named ReadOnlyRole.
var client = new AmazonIdentityManagementServiceClient(); var response = client.AttachRolePolicy(new AttachRolePolicyRequest { PolicyArn = "arn:aws:iam::aws:policy/ReadOnlyAccess", RoleName = "ReadOnlyRole" });
.NET:
Supported in: 8.0 and newer, Core 3.1
.NET Standard:
Supported in: 2.0
.NET Framework:
Supported in: 4.5 and newer, 3.5