I have a requirement where I can access the ADS IAM users from the AWS console only to specific frames of specific days during special days Is allowed. Anyone can tell me how it can be implemented in this policy
alternative element When a policy is in effect then you specify the conditions :
In the condition element, you create such a sense in which you have the boolean operator (equal, less, etc.) ) Use your position against prices in the request. Status values can include date, time , the requester's IP address, the request source's ARN, user name, user ID, and user agent of the requestor. [...] [emphasis my]
An example provided DateLessThan condition aws With: To specify the current date that the request should be received before June 30, 2013 :
{"Version": "2012-10-17", "Statement": {"Effect": "Allow", "Action": "iam: * Access * *", "Resource": "ARN: AAS: IAM : {"Aws: currenttime": "2013-06-30T00: 00: 00Z"}}}}}/ Pre>As shown here , It unfortunately only works with the conditions to specify a cron expression or a particular day or day of the week in a week, with the full date:
Give the date of the date Restrict access based on comparing a key / date value You use these conditions with the
aws: CurrentTimekey oraws: EpochTimeOr one of the time values Or the era (Unix) must be specified over time.It is believed that your experiment is in fact, you will need to wrap position management with some automation, depending on your needs, Updates 8601 dates.
No comments:
Post a Comment