Interface CfnPermissionSet.PermissionsBoundaryProperty

All Superinterfaces:
All Known Implementing Classes:
Enclosing class:

@Stability(Stable) public static interface CfnPermissionSet.PermissionsBoundaryProperty extends
Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary.

Specify either CustomerManagedPolicyReference to use the name and path of a customer managed policy, or ManagedPolicyArn to use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities in the IAM User Guide .

Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide .


 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 PermissionsBoundaryProperty permissionsBoundaryProperty = PermissionsBoundaryProperty.builder()
                 // the properties below are optional

See Also: