profile
Gets an individual profile resource
Overview
| Name | profile |
| Type | Resource |
| Description | profile |
| Id | awscc.rolesanywhere.profile |
Fields
| Name | Datatype | Description |
|---|---|---|
duration_seconds | number | |
enabled | boolean | |
managed_policy_arns | array | |
name | string | |
profile_arn | string | |
profile_id | string | |
require_instance_properties | boolean | |
role_arns | array | |
session_policy | string | |
tags | array | |
region | string | AWS region. |
Methods
Currently only SELECT is supported for this resource resource.
Example
SELECT
region,
duration_seconds,
enabled,
managed_policy_arns,
name,
profile_arn,
profile_id,
require_instance_properties,
role_arns,
session_policy,
tags
FROM awscc.rolesanywhere.profile
WHERE data__Identifier = '<ProfileId>';
Permissions
To operate on the profile resource, the following permissions are required:
Read
rolesanywhere:GetProfile,
rolesanywhere:ListTagsForResource
Update
iam:GetRole,
iam:GetPolicy,
iam:PassRole,
rolesanywhere:UpdateProfile,
rolesanywhere:EnableProfile,
rolesanywhere:DisableProfile,
rolesanywhere:TagResource,
rolesanywhere:UntagResource,
rolesanywhere:ListTagsForResource
Delete
rolesanywhere:DeleteProfile