AwsIamRoleDetails - AWS Security Hub

AwsIamRoleDetails

Contains information about an IAM role, including all of the role's policies.

Contents

AssumeRolePolicyDocument

The trust policy that grants permission to assume the role.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 131072.

Pattern: [\u0009\u000A\u000D\u0020-\u007E\u00A1-\u00FF]+

Required: No

AttachedManagedPolicies

The list of the managed policies that are attached to the role.

Type: Array of AwsIamAttachedManagedPolicy objects

Required: No

CreateDate

Indicates when the role was created.

For more information about the validation and formatting of timestamp fields in AWS Security Hub, see Timestamps.

Type: String

Pattern: .*\S.*

Required: No

InstanceProfileList

The list of instance profiles that contain this role.

Type: Array of AwsIamInstanceProfile objects

Required: No

MaxSessionDuration

The maximum session duration (in seconds) that you want to set for the specified role.

Type: Integer

Required: No

Path

The path to the role.

Type: String

Pattern: .*\S.*

Required: No

PermissionsBoundary

Information about the policy used to set the permissions boundary for an IAM principal.

Type: AwsIamPermissionsBoundary object

Required: No

RoleId

The stable and unique string identifying the role.

Type: String

Pattern: .*\S.*

Required: No

RoleName

The friendly name that identifies the role.

Type: String

Pattern: .*\S.*

Required: No

RolePolicyList

The list of inline policies that are embedded in the role.

Type: Array of AwsIamRolePolicy objects

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: