SSOAdmin / Client / attach_managed_policy_to_permission_set

attach_managed_policy_to_permission_set#

SSOAdmin.Client.attach_managed_policy_to_permission_set(**kwargs)#

Attaches an Amazon Web Services managed policy ARN to a permission set.

Note

If the permission set is already referenced by one or more account assignments, you will need to call ProvisionPermissionSet after this operation. Calling ProvisionPermissionSet applies the corresponding IAM policy updates to all assigned accounts.

See also: AWS API Documentation

Request Syntax

response = client.attach_managed_policy_to_permission_set(
    InstanceArn='string',
    ManagedPolicyArn='string',
    PermissionSetArn='string'
)
Parameters:
  • InstanceArn (string) –

    [REQUIRED]

    The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.

  • ManagedPolicyArn (string) –

    [REQUIRED]

    The Amazon Web Services managed policy ARN to be attached to a permission set.

  • PermissionSetArn (string) –

    [REQUIRED]

    The ARN of the PermissionSet that the managed policy should be attached to.

Return type:

dict

Returns:

Response Syntax

{}

Response Structure

  • (dict) –

Exceptions

  • SSOAdmin.Client.exceptions.ServiceQuotaExceededException

  • SSOAdmin.Client.exceptions.ThrottlingException

  • SSOAdmin.Client.exceptions.InternalServerException

  • SSOAdmin.Client.exceptions.ResourceNotFoundException

  • SSOAdmin.Client.exceptions.AccessDeniedException

  • SSOAdmin.Client.exceptions.ValidationException

  • SSOAdmin.Client.exceptions.ConflictException