Skip to content

External ID Authorization for OSS

External ID Authorization

  1. Click to proceed with authorization, and enter the Console.

  2. Go to RAM Access Control > Roles, and select Create Role:

  1. Complete the creation of the role:

  1. Modify the trust policy for the role
{
  "Statement": [
    {
      "Action": "sts:AssumeRole",
      "Condition": {
        "StringEquals": {
          "sts:ExternalId": "<External ID>"
        }
      },
      "Effect": "Allow",
      "Principal": {
        "RAM": [
          "acs:ram::<Authorized Account ID>:user/<Username>"
        ]
      }
    }
  ],
  "Version": "1"
}

  1. Create permissions

  1. Enter RAM Access Control > Permission Policies, and click to continue editing information:

  1. Enter the permission name, and click Confirm:

  1. Add new authorization for the role.

In Roles > Permission Management, click Add Authorization:

Feedback

Is this page helpful? ×