AWS Fundamentals Logo
AWS Fundamentals
AWS::RolesAnywhere::Profile

RolesAnywhere Profile

Definition of AWS::RolesAnywhere::Profile Resource Type

Properties

10 configurable properties. 2 required. Click a row to see details.

Filter:
PropertyTypeFlags
Name
string
Required
RoleArns
Array<string>
Required
AcceptRoleSessionName
boolean
AttributeMappings
Array<AttributeMapping>
DurationSeconds
number
Enabled
boolean
ManagedPolicyArns
Array<string>
RequireInstanceProperties
boolean
Create-onlyWrite-only
SessionPolicy
string
Tags
Array<Tag>

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

AttributeTypeDescription
ProfileArnstring-
ProfileIdstring-

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::RolesAnywhere::Profile

Resources:
  MyResource:
    Type: AWS::RolesAnywhere::Profile
    Properties:
      Name: "my-name"
      RoleArns: "arn:aws:service:region:account:resource"
      Tags:
        - Key: Environment
          Value: Production

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

iam:GetRoleiam:GetPolicyiam:PassRolerolesanywhere:CreateProfilerolesanywhere:TagResourcerolesanywhere:PutAttributeMappingrolesanywhere:DeleteAttributeMapping

read

rolesanywhere:GetProfilerolesanywhere:ListTagsForResource

update

iam:GetRoleiam:GetPolicyiam:PassRolerolesanywhere:GetProfilerolesanywhere:UpdateProfilerolesanywhere:EnableProfilerolesanywhere:DisableProfilerolesanywhere:TagResource

delete

rolesanywhere:DeleteProfile

list

rolesanywhere:ListProfilesrolesanywhere:ListTagsForResource

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

ServiceRolesAnywhere
Properties12
Required2
TaggingSupported
Primary IDProfileId

Supported Operations

CreateReadUpdateDeleteList

Immutable After Creation

These properties cannot be changed after the resource is created. Updating them triggers a replacement.

RequireInstanceProperties

Related Resources

External Links