attach_managed_policy_to_permission_set

SSOAdmin.Client.attach_managed_policy_to_permission_set(**kwargs)

Attaches an AWS managed policy ARN to a permission set.

Note

If the permission set is already referenced by one or more account assignments, you will need to call ProvisionPermissionSet after this operation. Calling ProvisionPermissionSet applies the corresponding IAM policy updates to all assigned accounts.

See also: AWS API Documentation

Request Syntax

response = client.attach_managed_policy_to_permission_set(
    InstanceArn='string',
    PermissionSetArn='string',
    ManagedPolicyArn='string'
)
Parameters
  • InstanceArn (string) --

    [REQUIRED]

    The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference .

  • PermissionSetArn (string) --

    [REQUIRED]

    The ARN of the PermissionSet that the managed policy should be attached to.

  • ManagedPolicyArn (string) --

    [REQUIRED]

    The AWS managed policy ARN to be attached to a permission set.

Return type

dict

Returns

Response Syntax

{}

Response Structure

  • (dict) --

Exceptions

  • SSOAdmin.Client.exceptions.ResourceNotFoundException
  • SSOAdmin.Client.exceptions.InternalServerException
  • SSOAdmin.Client.exceptions.ServiceQuotaExceededException
  • SSOAdmin.Client.exceptions.ThrottlingException
  • SSOAdmin.Client.exceptions.ValidationException
  • SSOAdmin.Client.exceptions.AccessDeniedException
  • SSOAdmin.Client.exceptions.ConflictException