AWS::DataZone::UserProfile

DataZone UserProfile

A user profile represents Amazon DataZone users. Amazon DataZone supports both IAM roles and SSO identities to interact with the Amazon DataZone Management Console and the data portal for different purposes. Domain administrators use IAM roles to perform the initial administrative domain-related work in the Amazon DataZone Management Console, including creating new Amazon DataZone domains, configuring metadata form types, and implementing policies. Data workers use their SSO corporate identit...

Properties

4 configurable properties. 2 required. Click a row to see details.

Filter:

Property	Type	Flags
`DomainIdentifier`	`string`	RequiredCreate-onlyWrite-only
`UserIdentifier`	`string`	RequiredCreate-onlyWrite-only
`Status`	`string`
`UserType`	`string`	Create-onlyWrite-only

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

Attribute	Type	Description
`Details`	`UserProfileDetails`	-
`DomainId`	`string`	The identifier of the Amazon DataZone domain in which the user profile is created.
`Id`	`string`	The ID of the Amazon DataZone user profile.
`Type`	`string`	-

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml

AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::DataZone::UserProfile

Resources:
  MyResource:
    Type: AWS::DataZone::UserProfile
    Properties:
      DomainIdentifier: "my-domainidentifier"
      UserIdentifier: "my-useridentifier"

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

datazone:CreateUserProfiledatazone:GetUserProfiledatazone:UpdateUserProfiledatazone:GetDomainsso:ListProfilessso:GetProfilesso:AssociateProfilesso:DisassociateProfile

read

datazone:GetUserProfile

update

datazone:UpdateUserProfiledatazone:GetUserProfiledatazone:UpdateUserProfilesso:ListProfilessso:GetProfilesso:AssociateProfilesso:DisassociateProfileiam:GetRole

delete

datazone:DeleteUserProfiledatazone:GetUserProfiledatazone:UpdateUserProfilesso:ListProfilessso:GetProfilesso:AssociateProfilesso:DisassociateProfileiam:GetRole

list

datazone:SearchUserProfiles

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

ServiceDataZone

Properties8

Required2

TaggingNot supported

Primary IDDomainId

Supported Operations

CreateReadUpdateDeleteList

Immutable After Creation

These properties cannot be changed after the resource is created. Updating them triggers a replacement.

DomainIdentifierUserIdentifierUserType

Related Resources

External Links

AWS Documentation