SSOAdmin / Client / put_permissions_boundary_to_permission_set

put_permissions_boundary_to_permission_set#

SSOAdmin.Client.put_permissions_boundary_to_permission_set(**kwargs)#

Attaches an AWS managed or customer managed policy to the specified PermissionSet as a permissions boundary.

See also: AWS API Documentation

Request Syntax

response = client.put_permissions_boundary_to_permission_set(
    InstanceArn='string',
    PermissionSetArn='string',
    PermissionsBoundary={
        'CustomerManagedPolicyReference': {
            'Name': 'string',
            'Path': 'string'
        },
        'ManagedPolicyArn': 'string'
    }
)
Parameters:
  • InstanceArn (string) –

    [REQUIRED]

    The ARN of the IAM Identity Center instance under which the operation will be executed.

  • PermissionSetArn (string) –

    [REQUIRED]

    The ARN of the PermissionSet.

  • PermissionsBoundary (dict) –

    [REQUIRED]

    The permissions boundary that you want to attach to a PermissionSet.

    • CustomerManagedPolicyReference (dict) –

      Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.

      • Name (string) – [REQUIRED]

        The name of the IAM policy that you have configured in each account where you want to deploy your permission set.

      • Path (string) –

        The path to the IAM policy that you have configured in each account where you want to deploy your permission set. The default is /. For more information, see Friendly names and paths in the IAM User Guide.

    • ManagedPolicyArn (string) –

      The AWS managed policy ARN that you want to attach to a permission set as a permissions boundary.

Return type:

dict

Returns:

Response Syntax

{}

Response Structure

  • (dict) –

Exceptions

  • SSOAdmin.Client.exceptions.ResourceNotFoundException

  • SSOAdmin.Client.exceptions.InternalServerException

  • SSOAdmin.Client.exceptions.ThrottlingException

  • SSOAdmin.Client.exceptions.ValidationException

  • SSOAdmin.Client.exceptions.AccessDeniedException

  • SSOAdmin.Client.exceptions.ConflictException